Skip to main content

Privacy Policy

Privacy Policy #

Effective Date: January 14, 2026 Last Updated: January 14, 2026

Four Cedars Accounting Group, LLC (“we,” “us,” or “our”) is committed to protecting your privacy and safeguarding your personal and financial information. This Privacy Policy explains how we collect, use, disclose, and protect your information in accordance with the Gramm-Leach-Bliley Act (GLBA) and other applicable privacy regulations.

Information We Collect #

We collect information necessary to provide professional accounting and financial services to our clients. The types of information we may collect include:

Client Information #

  • Personal identification information: Name, address, phone number, email address, and Social Security number
  • Financial information: Tax documents, income statements, bank account information, investment details, and other financial records
  • Business information: Business tax identification numbers, financial statements, payroll information, and transaction records
  • Application data: Information from tax organizers, worksheets, questionnaires, and service applications
  • Communication records: Correspondence, emails, and messages exchanged with our firm

Website Usage Information #

When you visit our website or use our online services, we may collect:

  • Contact form submissions: Name, email address, and message content when you contact us through our website
  • Secure file uploads: Sender name, email address, uploaded files, and optional messages when using our secure file transfer service
  • Technical information: IP addresses (used temporarily for security and rate limiting purposes only), browser type, and access times
  • Security tokens: We use Cloudflare Turnstile to protect against automated abuse. This service may collect browser characteristics and interaction patterns to verify you are human

Information from Other Sources #

We may receive information about you from:

  • Consumer reporting agencies (credit bureaus)
  • Government agencies and public records
  • Financial institutions involved in your transactions
  • Other professionals you authorize to share information with us (attorneys, financial advisors, etc.)

How We Use Your Information #

We use your information solely to provide professional accounting and financial services, including:

  • Preparing business tax returns and financial statements
  • Providing bookkeeping, payroll, and accounting services
  • Offering financial planning and consulting services
  • Responding to your inquiries and service requests
  • Maintaining accurate records for professional and legal compliance
  • Protecting against fraud and unauthorized access
  • Complying with legal obligations and professional standards

Information Sharing and Disclosure #

We do not disclose any nonpublic personal information about our clients or former clients to anyone, except as permitted or required by law.

We may share your information only in the following limited circumstances:

We may disclose your information to third parties when you explicitly authorize us to do so.

Service Providers #

We may share information with trusted service providers who assist us in operating our business, such as:

  • Cloud storage providers (Cloudflare R2) for secure file storage
  • Email service providers (Resend) for communication
  • Technology vendors providing website infrastructure and security services
  • Professional service providers including software vendors for tax preparation and accounting

These service providers are contractually obligated to protect your information and use it only for the specific services they provide to us.

We may disclose information when required by law, including:

  • In response to subpoenas, court orders, or legal process
  • To comply with tax laws and regulations
  • To protect our rights, property, or safety, or that of our clients or others
  • To prevent or investigate fraud or other illegal activities

Professional Standards #

We may share information with regulatory bodies, professional associations, or peer reviewers as required by professional accounting standards and ethics requirements.

Information Security #

We maintain physical, electronic, and procedural safeguards that comply with federal standards to protect your nonpublic personal information:

Physical Security #

  • Secure office facilities with restricted access
  • Locked file cabinets for physical documents
  • Secure disposal of sensitive documents through cross-cut shredding

Electronic Security #

  • Encrypted data transmission using SSL/TLS protocols
  • Secure cloud storage with enterprise-grade security controls
  • Access controls limiting information to staff members who need it to provide services
  • Regular security updates and monitoring
  • Multi-factor authentication for sensitive systems
  • Cloudflare security services including DDoS protection and web application firewall

Procedural Security #

  • Background checks for employees with access to client information
  • Confidentiality agreements with all staff and contractors
  • Regular security training for all personnel
  • Documented information security policies and procedures

Secure File Upload System #

Our secure file upload portal uses multiple layers of security:

  • Encrypted transmission and storage
  • HMAC-SHA256 token verification for file access
  • Time-limited download links (90-day expiration)
  • File type validation and size limits
  • Bot protection via Cloudflare Turnstile
  • Rate limiting to prevent abuse
  • SOC 1 Type II certified infrastructure

Data Retention #

We retain your information for as long as necessary to provide services and comply with legal and professional obligations:

  • Active client records: Maintained throughout our professional relationship
  • Former client records: Retained for a minimum of seven (7) years after the conclusion of services, or longer as required by law or professional standards
  • Tax returns and supporting documents: Retained per IRS requirements and state regulations
  • Contact form submissions: Retained for business purposes and then securely deleted
  • Secure file uploads: Automatically deleted after 90 days or when the download link expires
  • Rate limiting data: Temporary IP-based records stored for security purposes only and automatically expire

Your Privacy Rights #

You have the right to:

  • Access: Request access to the personal information we maintain about you
  • Correction: Request correction of inaccurate or incomplete information
  • Opt-out: Request that we limit disclosure of your information to third parties (within legal and professional constraints)
  • Deletion: Request deletion of your information after the required retention period, subject to legal and professional obligations

To exercise these rights, please contact us using the information provided below.

Cookies and Tracking Technologies #

Our website currently does not use cookies for tracking or analytics purposes. We use Cloudflare services for security and performance, which may set technical cookies necessary for website functionality and protection against attacks.

If we implement analytics or tracking in the future, we will update this policy and provide appropriate notice and opt-out mechanisms.

Third-Party Websites #

Our website may contain links to third-party websites, including social media platforms (LinkedIn, Facebook). We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

Children’s Privacy #

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately.

Changes to This Privacy Policy #

We reserve the right to update this Privacy Policy to reflect changes in our practices, technology, legal requirements, or for other operational reasons. We will post the updated policy on our website with a new “Last Updated” date. Material changes will be communicated to active clients via email or other appropriate means.

Gramm-Leach-Bliley Act Notice #

As required by the Gramm-Leach-Bliley Act, we provide this notice to inform you of our privacy practices regarding the collection, use, and protection of your nonpublic personal information.

Categories of Information We Collect: As described in the “Information We Collect” section above.

Categories of Information We Disclose: We do not disclose nonpublic personal information except as permitted by law, as described in the “Information Sharing and Disclosure” section above.

Confidentiality and Security: We restrict access to your nonpublic personal information to those employees and service providers who need it to provide services to you, as described in the “Information Security” section above.

Contact Us #

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:

Four Cedars Accounting Group, LLC
103 Main Ave S, Suite 202
North Bend, Washington 98045

For inquiries, please use our contact form or secure file upload portal for sensitive documents.

Acknowledgment #

By using our services or website, you acknowledge that you have read and understood this Privacy Policy and agree to the collection, use, and disclosure of your information as described herein. If you do not agree with this policy, please do not use our services or website.

This privacy policy complies with the requirements of the Gramm-Leach-Bliley Act (15 U.S.C. ยง 6801 et seq.) and applicable federal and state privacy regulations.