Data Privacy & Security Policy

1. Data Collection & Ingestion

BAGUNO collects invoice data exclusively for the purpose of extraction and automation. We do not sell, trade, or otherwise transfer to outside parties your Personally Identifiable Information (PII) or financial data. When you forward emails to your designated Baguno inbound address, our webhook processes the email and extracts supported attachments (PDF, JPEG, PNG, DOCX). We discard the email body if it does not contain relevant financial instructions. Documents are securely stored in Google Cloud Storage (GCS).

2. Neural OCR & AI Processing

Our AI extraction engine runs in a secured, encrypted environment. We utilize Microsoft Azure Document Intelligence and OpenAI for data extraction using Enterprise API endpoints. Data transmitted to these sub-processors is encrypted in transit, processed in isolated environments, and is not used to train public AI models. Documents processed through our Neural OCR are retained only for the duration required to extract data and allow user verification, after which they are archived according to your retention settings.

3. ERP Integrations

We use OAuth 2.0 and encrypted tokens to sync with platforms like Zoho Books, QuickBooks, and Xero. BAGUNO acts as a data processor; credentials are stored using AES-256 encryption. Baguno only requests the specific scopes required to push Bills, Purchase Orders, and Sales Orders. You can revoke this access at any time from your Baguno Dashboard.

4. Data Deletion & User Rights

You retain full ownership of your financial data. If you delete an invoice from the Baguno console, it is permanently wiped from our MongoDB database and Google Cloud Storage buckets. You may also request a full export or deletion of your organization's data at any time by contacting support.

5. Contact Us

For privacy-related inquiries, please contact: privacy@baguno.app