Website Privacy Policy

How we collect, use, share, and protect your information.

1. Introduction

BloomBook Solutions (“BloomBook,” “we,” “us,” or “our”) is a bookkeeping services brand operated by Calverra Consulting Inc., a North Carolina corporation. This Privacy Policy describes how we collect, use, share, and protect personal information when you visit our website, request information about our services, book a discovery call, become a client, or otherwise interact with us.

This Privacy Policy applies to information we collect through our website, our intake and booking forms, our email and phone communications, our text messaging program, and the tools we use to deliver bookkeeping services. It does not apply to third-party websites or services we link to but do not control.

By using our website or our services, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use the website or submit information to us.

2. Who We Are

BloomBook Solutions is a registered DBA (“doing business as”) name of Calverra Consulting Inc. All legal obligations under this Privacy Policy are obligations of Calverra Consulting Inc.

Contact Information

• Legal entity: Calverra Consulting Inc.
• Operating brand: BloomBook Solutions
• Primary contact: [email protected]
• Phone: +1 (855) 256-6626
• Location: Charlotte, North Carolina, USA

3. Information We Collect

We collect information in three categories: information you give us directly, information we collect automatically when you use our website, and information we receive from third-party service providers we use to deliver our services.

3.1 Information You Provide Directly

When you contact us, request a proposal, book a discovery call, or become a client, we may collect:

• Contact information — name, email address, phone number, business name, and mailing address.
• Business profile information — business website, social media handles, industry, time in business, entity structure (LLC, S-Corp, sole proprietor, etc.), EIN, team size, and general business description.
• Financial profile information — approximate monthly revenue ranges, number of business bank accounts and credit cards, payment processors in use (Stripe, PayPal, Square, Shopify Payments, Venmo for Business, and others), accounting software in use, and current state of your books.
• Service-delivery information — during the engagement, we access transactional financial data, bank and credit card statements, payment processor records, vendor invoices, receipts, prior tax returns provided for reference, and any other records you submit for bookkeeping purposes.
• Communication content — the contents of emails, text messages, and call notes exchanged with us.
• Payment information — payment method details for billing. Payment card data is processed and stored by our payment processor (Stripe). We do not store full card numbers on our systems.

3.2 Information Collected Automatically

When you visit our website, we and our service providers may collect:

• Device and browser information, including IP address, browser type, operating system, device identifiers, and screen size.
• Usage information, including pages viewed, time spent on pages, links clicked, referring website, and date and time of access.
• Approximate location information derived from IP address.
• Cookies and similar tracking technologies. See Section 8 for more information.

3.3 Information From Third-Party Service Providers

We may receive information about you from third-party platforms when you interact with us through them. For example:

• If you book a discovery call through Microsoft Bookings, we receive your contact and scheduling information.
• If you submit an intake form through Microsoft 365 Forms, we receive your responses.
• If you become a client, our payment processor (Stripe) provides us with billing confirmation and payment status information.
• If you authorize a read-only bank or accounting software connection (Xero, Wave, or similar), we receive transactional data from the connected accounts as authorized by you.

4. How We Use Your Information

We use the information we collect to operate our business, deliver our services, and communicate with you. Specifically, we use your information to:

• Respond to your inquiries and provide the information you request.
• Schedule and conduct discovery calls and prepare tailored proposals.
• Provide bookkeeping services, including reconciliation, categorization, reporting, catch-up and clean-up work, and any other services in our engagement.
• Process payments, manage subscriptions, and send billing communications.
• Send service-related communications, including monthly status updates, document requests, financial reports, and account notices.
• Send marketing communications (including emails and, if you opt in, text messages) about BloomBook Solutions services. You can opt out at any time — see Section 9 and Section 10.
• Improve our website, services, and client experience.
• Maintain records required for our own tax, accounting, regulatory, and legal obligations.
• Detect, prevent, and respond to fraud, security incidents, or misuse of our services.
• Comply with applicable laws, court orders, subpoenas, and other legal process.

We do not sell your personal information, and we do not share it with third parties for their independent marketing purposes.

5. How We Share Your Information

We share personal information only in the limited circumstances described below.

5.1 Data Sharing

• Customer data is not shared with third parties for promotional or marketing purposes.
• Mobile opt-in and consent are never shared with anyone for any purpose. Any information sharing that may be mentioned elsewhere in this policy excludes mobile opt-in data.

5.2 Service Providers

We share information with third-party service providers that help us operate our business and deliver our services. These providers are authorized to use your information only to perform services on our behalf. The table below lists the service providers we currently rely on and the role each one plays.

Service Provider	Role	What They Handle
Microsoft 365 / OneDrive	Productivity & storage	Email, document storage, forms, scheduling (Microsoft Bookings), and video calls (Microsoft Teams).
Xero	Bookkeeping software	Primary platform for client bookkeeping and reporting.
Wave	Bookkeeping software	Secondary platform offered for lower-volume clients.
Financial Cents	Practice management	Tracks client records, tasks, deadlines, and engagement notes.
Stripe	Payment processing	Processes subscription billing and one-time payments.
DocuSign	Electronic signature	Used to execute Master Service Agreements and Statements of Work.
Zapier	Automation	Connects forms, intake data, and onboarding tasks across our tools.
Google Analytics	Website analytics	Aggregated website usage data (if active on the site).

Each of these providers maintains its own privacy and security practices. We select providers that offer encryption in transit, secure authentication, and contractual privacy obligations appropriate for handling financial information.

5.3 Professional Advisors

We may share information with our own attorneys, accountants, insurers, and other professional advisors when reasonably necessary to receive their services. These advisors are bound by professional confidentiality obligations.

5.4 Legal Requirements

We may disclose information when we believe in good faith that disclosure is required by applicable law, court order, subpoena, or other legal process, or when necessary to protect our rights, property, or safety, or the rights, property, or safety of others.

5.5 Business Transfers

If Calverra Consulting Inc. or BloomBook Solutions is involved in a merger, acquisition, sale of assets, or similar business transaction, your information may be transferred as part of that transaction. We will provide notice before any such transfer if your information becomes subject to a materially different privacy policy.

5.6 With Your Consent

We may share your information for any other purpose with your consent.

6. Financial Information and the Gramm-Leach-Bliley Act

In the course of providing bookkeeping services, we receive and process nonpublic personal financial information, including transactional records, banking activity, and tax-related information. We treat this information consistent with the confidentiality and safeguarding standards expected under the Gramm-Leach-Bliley Act (“GLBA”) and the Federal Trade Commission’s Safeguards Rule, including:

• Limiting access to client financial information to personnel with a business need to access it.
• Requiring confidentiality obligations from service providers who handle client financial information on our behalf.
• Maintaining administrative, technical, and physical safeguards reasonably designed to protect the security, confidentiality, and integrity of client financial information.
• Restricting use and disclosure of client financial information to the purposes for which it was provided, except as permitted or required by law.

We do not disclose nonpublic personal financial information about current or former clients to non-affiliated third parties, except as described in this Privacy Policy or as required or permitted by law.

7. Data Security

We maintain administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction. These safeguards include:

• Encryption of data in transit using industry-standard protocols.
• Multi-factor authentication on accounts that access client information.
• Role-based access controls and the principle of least privilege.
• Use of reputable service providers whose security practices we evaluate before adoption.
• Periodic review of access permissions, security configurations, and provider relationships.
• Cyber liability insurance coverage maintained at all times.

No method of transmission over the internet or method of electronic storage is completely secure. We cannot guarantee absolute security. If we become aware of a security incident affecting your information, we will notify you in accordance with applicable law.

8. Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to operate the site, remember your preferences, and understand how visitors use the site. Cookies are small text files stored on your device when you visit a website.

Types of Cookies We May Use

• Strictly necessary cookies — required for the website to function (for example, security and load balancing).
• Analytics cookies — help us understand how visitors interact with the website (for example, Google Analytics, if active).
• Functional cookies — remember your preferences to improve your experience on the site.

You can control cookies through your browser settings. Most browsers allow you to refuse cookies or alert you before a cookie is set. If you disable cookies, some features of the website may not function properly.

We do not currently respond to “Do Not Track” browser signals because there is no industry standard for how to respond to them.

9. Email Marketing

If you provide us your email address, we may send you communications about our services, updates, educational content, and similar information that we believe may be of interest. You can unsubscribe from marketing emails at any time by clicking the “unsubscribe” link at the bottom of any marketing email or by emailing [email protected]. Even after you unsubscribe from marketing emails, we may continue to send you transactional and service-related communications (for example, monthly reports, billing notices, and account updates) that are necessary for the services we provide to you.

10. Calverra Consulting Inc. Messaging Terms and Conditions

The following Messaging Terms and Conditions apply to all text messaging programs operated by Calverra Consulting Inc., including those operated under our BloomBook Solutions brand. By providing your mobile phone number and opting in, you agree to these terms.

1. The messaging program consists of general conversational messaging to answer questions and provide support to customers, promotional offers or discounts, and any promotion of our products or services.
2. You can cancel the SMS service at any time. Just text “STOP” to the phone number from which you received messages. After you send the SMS message “STOP” to us, we will send you an SMS message to confirm that you have been unsubscribed. After this, you will no longer receive SMS messages from us. If you want to join again, just sign up as you did the first time and we will start sending SMS messages to you again.
3. If you are experiencing issues with the messaging program you can reply with the keyword HELP for more assistance, or you can get help directly at [email protected].
4. Carriers are not liable for delayed or undelivered messages.
5. As always, message and data rates may apply for any messages sent to you from us and to us from you. Message frequency will vary based on communication needs. If you have any questions about your text plan or data plan, it is best to contact your wireless provider.
6. If you have any questions regarding privacy, please read the rest of this Privacy Policy.

11. Data Retention

We retain personal information for as long as reasonably necessary to fulfill the purposes for which it was collected, including providing services to you, complying with our legal, tax, and accounting obligations, resolving disputes, and enforcing our agreements.

Because bookkeeping records are generally subject to multi-year retention requirements under federal and state tax law, we typically retain client financial records and engagement files for at least seven (7) years following the end of the engagement, and longer where required by law or appropriate to defend against potential claims. After the applicable retention period, we securely delete or de-identify the information.

Prospect records (intake responses and discovery call notes for individuals who do not become clients) are typically retained for up to two (2) years for follow-up and re-engagement purposes, after which they are archived or deleted.

12. Your Privacy Rights and Choices

Depending on where you live, you may have certain rights with respect to your personal information. We honor the rights described below for all individuals, regardless of state of residence, except where prohibited by law or where an exemption applies (for example, where retention is required to meet legal obligations or for established business purposes).

Rights You May Exercise

• Right to know / access — request to know what personal information we have collected about you.
• Right to correct — request correction of inaccurate personal information.
• Right to delete — request deletion of personal information, subject to legal retention requirements.
• Right to opt out of marketing — unsubscribe from marketing emails and text messages at any time.
• Right to data portability — request a copy of certain personal information in a portable format.
• Right to non-discrimination — we will not deny you services or charge you a different price for exercising your privacy rights.

How to Exercise Your Rights

To exercise any of these rights, email us at [email protected] with the subject line “Privacy Request.” We may need to verify your identity before fulfilling your request. We will respond within the timeframes required by applicable law (generally within 45 days for state privacy law requests). You may authorize an agent to make a request on your behalf, but we will require verification of the agent’s authority.

13. State-Specific Privacy Rights

Residents of certain states have additional privacy rights under their state privacy laws. The following describes rights specific to those states. We honor verified requests to the extent required by applicable law.

13.1 California Residents (CCPA / CPRA)

Under the California Consumer Privacy Act, as amended by the California Privacy Rights Act, California residents have the right to:

• Know what categories of personal information we collect, the sources, and the purposes of collection.
• Access the specific pieces of personal information we have collected about them in the prior 12 months.
• Request deletion of their personal information, subject to legal exceptions.
• Correct inaccurate personal information.
• Opt out of the “sale” or “sharing” of personal information. BloomBook Solutions does not sell personal information and does not share personal information for cross-context behavioral advertising.
• Limit the use of sensitive personal information. We use sensitive personal information only for the purposes of providing our services and as otherwise permitted by law.
• Be free from retaliation for exercising any of these rights.

California residents may designate an authorized agent to make a request on their behalf, with appropriate verification. Some information in our possession is exempt from CCPA requests because it is regulated under the Gramm-Leach-Bliley Act (see Section 6).

13.2 Other State Residents

Residents of Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Delaware, Iowa, Montana, Tennessee, and other states with comprehensive privacy laws may have rights to access, correct, delete, and obtain a copy of personal information; to opt out of targeted advertising, sale of personal information, or certain profiling; and to appeal denials of privacy requests. To exercise these rights, email [email protected] with the subject “Privacy Request.” We do not engage in targeted advertising or sale of personal information as those terms are defined in applicable state laws.

13.3 Nevada Residents

Nevada residents may direct us not to sell certain personal information as defined under Nevada law. We do not sell personal information; however, Nevada residents may submit a verified request to [email protected] to confirm this status.

14. Children’s Privacy

Our website and services are intended for business owners and other adults. We do not knowingly collect personal information from children under 13 years of age. If we learn that we have collected personal information from a child under 13 without parental consent, we will delete that information promptly. If you believe we may have collected information from a child under 13, please contact us at [email protected].

15. Third-Party Websites and Services

Our website may contain links to third-party websites and services that we do not operate or control. This Privacy Policy does not apply to those websites or services. We encourage you to review the privacy policies of any third party before providing them with personal information.

16. Users Outside the United States

BloomBook Solutions is based in the United States and our services are intended for clients in the United States. If you access our website or services from outside the United States, you understand that your information will be transferred to, stored, and processed in the United States, which may have different data protection laws than your country of residence. By using our website or services, you consent to this transfer.

17. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the “Last Updated” date at the top of this policy and, where appropriate, provide additional notice (for example, by email or a prominent notice on the website). Your continued use of the website or services after we publish or notify you of changes constitutes your acceptance of the updated Privacy Policy.

18. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

— End of Privacy Policy —