This Privacy Policy ("Policy") explains how VSN SOCIETY LLC, a Wisconsin limited liability company doing business as FlipBooks ("FlipBooks," "we," "us," or "our"), collects, uses, discloses, and safeguards information in connection with the FlipBooks website, web application, and related products and services (collectively, the "Service").
Company: VSN SOCIETY LLC d/b/a FlipBooks
Mailing Address: 5092 Oak View Drive, Business 17, Shawano, WI 54166, United States
Privacy Contact: useflipbooks@gmail.com
Governing Law: State of Wisconsin, United States (without regard to its conflict-of-laws rules)
By creating an account or using the Service, you acknowledge that you have read and understand this Policy. This Policy should be read together with our Terms of Service. Capitalized terms not defined here have the meanings given to them in the Terms of Service.
Notice, not contract. This Policy is a privacy disclosure provided to satisfy applicable legal obligations. Except where a statute or regulation gives it independent legal force, this Policy does not create contractual rights, warranties, or third-party-beneficiary rights in addition to those set forth in the Terms of Service. If there is any conflict between this Policy and the Terms of Service, the Terms of Service govern with respect to the contractual relationship between you and FlipBooks.
The Service is operated from the United States and made available worldwide. FlipBooks is a Wisconsin-based company, and our infrastructure, personnel, and sub-processors are primarily located in the United States.
International transfers. Regardless of where you access the Service from, your personal information will be transferred to, stored, and processed on servers located in the United States and by our U.S.-based sub-processors. The United States may not provide the same level of data-protection rights as your home jurisdiction. By creating an account or using the Service, you acknowledge and consent to that transfer. Where required by applicable law (including the GDPR, UK GDPR, Swiss FADP, PIPEDA, and Quebec Law 25), we rely on your informed consent, the performance of our contract with you, and/or appropriate safeguards as a legal basis for that transfer.
Local compliance is your responsibility. You are responsible for ensuring that your use of the Service complies with the laws of your country, state, province, or region. FlipBooks makes no representation that the Service is appropriate or available for use in every jurisdiction, and we may decline to provide the Service where doing so would violate applicable law or trade sanctions.
Under US state privacy laws (e.g., the California Consumer Privacy Act as amended by the CPRA, "CCPA/CPRA") and Canadian federal and provincial privacy laws (PIPEDA and Quebec's Law 25), FlipBooks' role depends on the category of data:
Business-to-business posture. FlipBooks is offered as a direct-to-consumer subscription for individual resellers. We do not offer a bespoke Data Processing Agreement, Data Protection Addendum, Business Associate Agreement, or separate Master Services Agreement. The Terms of Service and this Policy, read together, are the entire agreement between you and us with respect to personal information.
We collect information (a) that you provide directly, (b) generated automatically through your use of the Service, and (c) received from third-party services you authorize us to connect to.
a) Account & Authentication Information:
b) Payment Information:
c) Bank Data (via Plaid):
d) Marketplace / Transaction Data:
e) Receipt Images:
f) Automatically Collected Technical Data:
g) Communications:
For California residents, the following table maps the categories of "personal information" (as defined in Cal. Civ. Code § 1798.140) that we collect, the sources, business purposes, and categories of recipients. We have collected all of the following categories within the past 12 months.
| CCPA Category | Examples | Source | Purpose |
|---|---|---|---|
| A. Identifiers | Name, email, IP address, account ID | You; automatic | Account setup; authentication; support |
| B. Customer records (Cal. Civ. Code § 1798.80(e)) | Billing details (tokenized), contact info | You; Stripe | Payment processing; invoicing |
| F. Internet / network activity | Pages visited, session logs, device info | Automatic | Security; analytics; debugging |
| G. Geolocation (coarse) | Country/state from IP | Automatic | Fraud prevention; eligibility check |
| I. Professional / employment | Reselling business data, Schedule C info | You; integrations | Bookkeeping; tax prep |
| K. Inferences | Profit/loss trends, deadstock flags | Derived from your data | Provide the Service |
| L. Sensitive PI (see Section 6) | Financial account numbers, access tokens | You; Plaid | Bank sync; bookkeeping |
We do not collect CCPA Categories C (protected classifications), D (commercial purchase history outside of your reselling business records), E (biometric), H (audio/visual surveillance outside of voluntary support attachments), or J (education records).
Recipients: Each category is shared only with the sub-processors listed in Section 12 (for the stated purpose) and as required by law. We do not sell or share any category for cross-context behavioral advertising (see Section 8).
Under CCPA/CPRA, "Sensitive Personal Information" includes certain financial-account identifiers and access credentials. FlipBooks collects the following SPI:
Purposes for which SPI is used: solely to (a) authenticate you, (b) retrieve transactions and order data you have authorized, (c) provide the Service, (d) detect fraud and secure accounts, and (e) comply with law. We do not use SPI to infer characteristics about you, to target advertising, or for any purpose beyond what you authorized.
Right to Limit Use of Sensitive Personal Information: California residents have the right to direct FlipBooks to limit use of SPI to uses that are reasonably necessary to provide the Service. Because FlipBooks already limits SPI to those purposes, no operational change is required when this right is invoked — but we will confirm the limitation on request. Submit a request at /privacy-request or email useflipbooks@gmail.com.
We use the information described in Section 4 for the following purposes, and no others:
FLIPBOOKS DOES NOT SELL YOUR PERSONAL INFORMATION. FLIPBOOKS DOES NOT SHARE YOUR PERSONAL INFORMATION FOR CROSS-CONTEXT BEHAVIORAL ADVERTISING. We have not sold or "shared" (as those terms are defined under CCPA/CPRA, Cal. Civ. Code § 1798.140) personal information in the past 12 months, and we have no plans to do so.
We do not operate ad pixels, retargeting tags, or social-media conversion pixels that would cause your personal information to be disclosed to a third party for its own advertising purposes. If this ever changes, we will (1) update this Policy, (2) provide at least 30 days' advance notice, and (3) make an opt-out link conspicuous on every page.
California and other covered state residents may submit a "Do Not Sell or Share" request at any time via /privacy-request or by emailing useflipbooks@gmail.com. A "Do Not Sell or Share My Personal Information" link is available in the footer of every page of the Service.
FlipBooks uses Plaid Inc. to allow you to securely connect your bank or credit card accounts.
FlipBooks connects to the eBay Developer API via OAuth 2.0 to import your reselling data. Similar terms will apply to future marketplace integrations as we add them.
.readonly OAuth scopes only — Sell Account (read-only), Sell Fulfillment (read-only), Sell Inventory (read-only), Sell Finances (read-only), and Commerce Identity (read-only). These scopes do NOT permit FlipBooks to: list new items, modify prices, refund orders, change payout methods, send messages, or take any action that affects your eBay account state. If a future feature requires write access, we will request the specific narrower scope at that time and disclose it in a policy update.oauth2/revoke) to invalidate your tokens immediately on our side and purge all data retrieved from that integration within 30 days, except where retention is required by law (see Section 14). As a belt-and-suspenders, you can also revoke FlipBooks at eBay's side by visiting https://accountsettings.ebay.com/uas → "Third-party app permissions".When you upload a receipt or similar document, FlipBooks transmits the image and a processing prompt to the Anthropic Claude API for optical character recognition (OCR) and expense categorization.
FlipBooks uses the following sub-processors to deliver the Service. Each is bound by a written agreement limiting use of data to providing its service to FlipBooks. All sub-processors are based in and host data in the United States.
| Sub-Processor | Function | Location | Privacy Policy |
|---|---|---|---|
| Supabase, Inc. | Postgres database (with Row-Level Security), storage, auth backend | United States | supabase.com/privacy |
| Netlify, Inc. | Web hosting, CDN, serverless functions | United States | netlify.com/privacy |
| Stripe, Inc. | Payment processing, subscription billing | United States | stripe.com/privacy |
| Plaid Inc. | Bank account linking, transaction retrieval | United States | plaid.com/legal |
| eBay Inc. (Developer API) | Marketplace order, listing, fee, payout data | United States | eBay Privacy Notice |
| Anthropic, PBC | Claude API for receipt OCR & categorization | United States | anthropic.com/policies/privacy |
| Resend Inc. | Transactional email delivery | United States | resend.com/legal/privacy-policy |
Analytics: At the time of this update, FlipBooks does not load a third-party analytics SDK (Google Analytics, Plausible, Mixpanel, or similar) on public pages. If we add analytics in the future, we will update this Policy and the sub-processor table before the feature is deployed.
Change notice: We maintain the current sub-processor list at /privacy-subprocessors. We will post changes there and provide at least 30 days' advance notice of any new sub-processor that will process personal information. If you object, your only remedy is to terminate your account under the Terms of Service.
Contractual posture. FlipBooks has executed or accepted the data-processing terms, data-protection addenda, or equivalent written commitments published by each sub-processor listed above, each of which restricts the sub-processor to processing personal information solely on our instructions and prohibits selling or sharing for cross-context behavioral advertising, consistent with Cal. Civ. Code § 1798.140(ag) and Cal. Code Regs. tit. 11 § 7051.
Except where expressly stated otherwise, FlipBooks and each sub-processor act as separate and independent controllers or processors with respect to the data each processes. FlipBooks is not responsible for, and disclaims all liability arising from, (a) any act, omission, security incident, or privacy failure of Plaid, Stripe, Anthropic, Supabase, Netlify, Resend, eBay, or any other sub-processor or integration partner, or (b) any use you make of third-party software or services outside the Service. If a sub-processor experiences a security incident that affects your data, your remedies against that sub-processor (if any) are governed by that sub-processor's own terms and the applicable law between you and them. Nothing in this Section enlarges the limitations on FlipBooks's liability set forth in the Terms of Service, which control.
Because FlipBooks ingests bank transaction data via Plaid on behalf of individual users, the Service may qualify as a "financial institution" for purposes of the FTC Safeguards Rule under the Gramm-Leach-Bliley Act (16 C.F.R. Part 314). FlipBooks maintains a written information security program designed to meet the Safeguards Rule, including:
Evolving practices. The measures listed above describe our current program; specific controls evolve with the threat landscape and the size of our operations. Some measures may not be implemented at all times or in all ways described, and this Section is provided for transparency rather than as a representation or warranty of any specific technical outcome. Nothing in this Section creates a contractual obligation beyond those in the Terms of Service, and no third party may rely on any control described here.
No private right of action from this Section. Our security program is designed to meet applicable legal standards (including the FTC Safeguards Rule where applicable); our compliance with those standards is enforceable only by the agencies charged with enforcing them.
No guarantee. No method of transmission or storage is perfectly secure. While we implement commercially reasonable, industry-standard measures to protect your information, we cannot and do not guarantee absolute security, and you use the Service at your own risk. YOU ARE RESPONSIBLE FOR MAINTAINING THE SECURITY OF YOUR OWN ACCOUNT CREDENTIALS, DEVICES, AND NETWORK.
To the extent FlipBooks is a "financial institution" under 15 U.S.C. § 6809(3) because it aggregates bank transaction data on behalf of consumers, this Policy serves as our initial and annual GLBA Privacy Notice under 16 C.F.R. Part 313. The categories of nonpublic personal information we collect and share are described in Sections 4, 5, 6, 9, and 12. We do not share nonpublic personal information with non-affiliated third parties outside the exceptions of 16 C.F.R. §§ 313.14 and 313.15 (service providers and joint marketing), and we qualify for the annual-notice exception under 12 C.F.R. § 1016.5(e) (Regulation P). If we change our sharing practices in a manner that disqualifies us from that exception, we will deliver a new annual notice. You have no right to opt out of sharing with Plaid, Stripe, or similar service providers because such sharing is necessary to provide the Service you requested, consistent with § 313.15(a)(1).
We retain personal information only as long as needed for the purposes set out in this Policy, or as required by law.
When you cancel or your subscription lapses (whether you cancel through Account Settings, your trial ends without conversion, or your renewal payment fails after our retry sequence), your data is kept in read-only mode for thirty (30) days from the date your paid access ends. During that window:
After 30 days, your account and all data associated with it are permanently deleted. This includes your transactions, inventory, mileage logs, connected-integration tokens, receipts, custom categories, and your authentication record itself. Deletion is irreversible — we cannot restore the data once it is gone. You can reactivate at any time during the 30-day window to fully restore access; once the 30-day window closes, restoration is no longer possible and you would need to start a new account from scratch.
How the deletion is performed. A daily automated job ("dunning-delete-cron") runs once per day, identifies accounts whose grace period has expired, and deletes them. We confirm the cancellation against Stripe immediately before deletion as a safeguard against accidental removal of an active subscriber. Every deletion is recorded in an internal audit log (email, deletion date, reason) so we can confirm to you on request that the deletion occurred.
Confirmation email. When deletion completes we send one final email to your address on file confirming the deletion. This is the last email you will receive from FlipBooks at that address relating to that account.
Legal-retention exceptions. Some categories of data described in the bullets above (notably tax-related financial records, billing records held by Stripe, marketing suppression records, and authentication / security logs) may be retained beyond 30 days where retention is required by law, by an active investigation, or by an unresolved chargeback or dispute. In those cases the data is segregated and used only for the legally-mandated purpose. See also Section 16 on the right to delete and its statutory exceptions.
Want us to keep your data longer? Email useflipbooks@gmail.com before the 30-day window expires and we can flag your account for retention while you decide. We do not extend the window automatically.
This section discloses our backup posture, recovery objectives, and the technical safeguards that surround your data once it is at rest. It supplements (and does not replace) the retention rules in Section 14 and the security measures described in Section 13.
Right of access — programmatic export. You may exercise your right of access (CCPA/CPRA, GDPR Article 15, and equivalent state-law rights — see Section 16) at any time by calling our authenticated /api/data-export endpoint, which returns a single JSON file containing every row we hold on your behalf across every table. Encrypted OAuth and bank-aggregator tokens are replaced with the literal string [REDACTED] in the export — the plaintext values never leave the server. The export is rate-limited (3 requests per hour per account) to deter session-abuse scraping. The same data is also available through the Export My Data button in the dashboard if you prefer a UI flow. Either path is sufficient to satisfy a verifiable consumer request under applicable state privacy law.
If we confirm that a security incident has resulted in the unauthorized acquisition of unencrypted personal information belonging to you, we will notify you without unreasonable delay and, where required by statute, within the shortest timeframe mandated by applicable law (for example, within 30 days for Florida residents under Fla. Stat. § 501.171, and within 30 days for Wisconsin residents under Wis. Stat. § 134.98).
Notice will be provided to the email address associated with your account. If email is not reasonably available, we will provide substitute notice through a conspicuous posting on the Service and, where applicable, via major statewide media, consistent with Wis. Stat. § 134.98(3).
Notice will include, to the extent known at the time of delivery: (a) a description of the incident; (b) the categories of information involved; (c) the steps we have taken; and (d) resources you can use (such as guidance from the FTC at IdentityTheft.gov).
No admission. Delivery of notice is provided in the interest of transparency and regulatory compliance and does not constitute an admission of fault, negligence, or liability by FlipBooks, VSN SOCIETY LLC, or any of its personnel, affiliates, or sub-processors.
Allocation of remediation costs. Except where applicable law requires otherwise, FlipBooks is not obligated to provide or pay for credit-monitoring, identity-theft-protection, or similar services as a consequence of an incident involving the Service, and any such services offered by FlipBooks are provided as a courtesy and do not create a precedent or waiver.
Force majeure / third-party incidents. Incidents originating in a sub-processor's systems (Section 12) will be communicated to you based on the information that sub-processor provides to FlipBooks, on the timeline they provide it. FlipBooks will pass through notifications it receives and will not independently warrant the accuracy of third-party incident reports.
Your cooperation. You agree to provide reasonable cooperation with any investigation and to keep the email address on your account current. Missed notifications due to a stale email address are your responsibility.
Depending on where you live, you may have some or all of the following rights under state privacy laws, including the CCPA/CPRA (California), VCDPA (Virginia), CPA (Colorado), CTDPA (Connecticut), UCPA (Utah), TDPSA (Texas), OCPA (Oregon), MCDPA (Montana), and similar laws in other states as they take effect.
How to exercise your rights:
Response time: We will acknowledge within 10 business days and substantively respond within 45 days of a verifiable request. We may extend once by an additional 45 days (for a total of 90 days) where reasonably necessary, with notice to you.
Identity verification: To protect your data, we will verify your identity before fulfilling a rights request. For logged-in users, verification is typically the email on file plus a confirmation from inside the Service. For non-account holders, we may ask for information to match against records we maintain.
Authorized agents: You may designate an authorized agent to act on your behalf. We will require written proof of authorization (signed permission or a valid power of attorney), and we may still need to verify your identity directly.
Exceptions to deletion. We may deny, in whole or in part, a deletion request and retain specified records where retention is permitted under Cal. Civ. Code § 1798.105(d) and parallel provisions of other state laws, including where retention is necessary to: (i) complete the transaction for which the information was collected; (ii) detect, prevent, or prosecute security incidents or fraud; (iii) comply with tax, accounting, financial-reporting, or other legal obligations (including IRC § 6001 and state equivalents); (iv) defend or exercise legal claims; (v) comply with a subpoena, court order, preservation request, or government inquiry; (vi) maintain a suppression list to honor your prior opt-out or unsubscribe request; or (vii) preserve information in encrypted backup media pending overwrite. When we deny deletion on these grounds, we will tell you which exception applies.
Intake log. We maintain a log of verified rights requests (date received, request type, verification method, response deadline, outcome). You may request confirmation that your request is logged.
FlipBooks processes personal information of Canadian residents in accordance with Canada's Personal Information Protection and Electronic Documents Act (PIPEDA), and, for Quebec residents, the Act respecting the protection of personal information in the private sector (as amended by Law 25).
PIPEDA Principles. We commit to the ten PIPEDA fair-information principles:
Quebec Law 25. For Quebec residents:
Privacy Impact Assessment (Quebec Law 25 s. 17). Before processing Quebec residents' personal information in the United States, FlipBooks conducted and documented a Privacy Impact Assessment considering: (i) the sensitivity of the information (financial, including NPI); (ii) the purposes of use (limited to providing the Service); (iii) technical protective measures (encryption at rest and in transit, RLS, access controls); (iv) contractual protective measures (Section 12 sub-processor agreements); and (v) the legal regime of the destination jurisdiction (US federal and state privacy law, including GLBA and applicable state privacy statutes). Based on that assessment, we concluded that the personal information will receive protection equivalent to that afforded in Quebec. A summary of the PIA is available to Quebec residents and to the Commission d'accès à l'information on request, subject to redaction of confidential operational detail.
Consent to US transfer. By using the Service, Canadian residents consent to the transfer of their personal information to the United States and its processing there by FlipBooks and its sub-processors.
The Service is not directed to anyone under 18. FlipBooks is a bookkeeping tool for adult resellers and small businesses.
COPPA (under 13): Consistent with the Children's Online Privacy Protection Act (15 U.S.C. § 6501 et seq.), we do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13 without verifiable parental consent, we will delete that information promptly.
Under 18: If you are under 18 (or under the age of majority in your province or state), you are not permitted to create an account. If we learn that an account is held by a minor, we will disable it and delete associated data.
To report that a minor may have provided personal information, email useflipbooks@gmail.com.
Age attestation at signup. During account creation, you affirmatively attest that you are at least 18 years of age (or the age of majority in your province or state, whichever is greater). We log the timestamp and IP of that attestation. Misrepresenting your age is a breach of the Terms of Service and grounds for immediate account termination.
FlipBooks does not currently collect, capture, store, or use any biometric identifiers or biometric information as those terms are defined under the Illinois Biometric Information Privacy Act (740 ILCS 14) or any comparable state law (including Texas CUBI and Washington HB 1493).
If we ever introduce a feature that would collect biometric information from Illinois residents or other users subject to biometric-specific laws, we will provide a separate written notice, obtain written consent in advance, and publish a written retention and destruction schedule before any such collection begins.
FlipBooks uses cookies and similar technologies only as described here:
You can also control non-essential cookies through your browser settings.
Universal opt-out signals. Where your browser transmits a Global Privacy Control (GPC) signal or legacy Do Not Track (DNT) header, we treat it as a validly submitted request to opt out of any sale or sharing of your personal information and to limit use of sensitive personal information, as recognized by the California Attorney General under Cal. Code Regs. tit. 11 § 7025, and as applied by parallel regulations in Colorado, Connecticut, and Texas. The signal is honored for all browser sessions from the detected device and user agent, not only the active session. For account holders, we additionally persist the opt-out on your account record.
Third-party fonts. Our pages load typefaces from Google Fonts. No cookies are set by the font server, but your browser discloses its IP address and user-agent to Google for the font request, as is standard on most of the web. If you prefer, you may block fonts.googleapis.com in your browser; the site will fall back to system fonts.
Notification rendering happens within FlipBooks. Only the finished message content and your email address are passed to Resend for delivery.
CAN-SPAM / CASL representations. Every commercial email we send includes: (i) a functional unsubscribe mechanism honored within 10 business days of your click; (ii) the physical mailing address of VSN SOCIETY LLC; (iii) a non-deceptive "From" line and subject line. For Canadian recipients, we rely on express consent obtained at account creation or through a separate opt-in and we maintain records of consent (date, method, and scope) consistent with CASL § 10(1) and § 13. You may withdraw CASL consent at any time by using the unsubscribe link or emailing useflipbooks@gmail.com.
FlipBooks lets you store buyer and payee contact records to organize your business.
We may update this Policy to reflect changes in our practices, technology, legal requirements, or the Service. When we do, we will change the "Last updated" date at the top of this page.
For material changes (changes that meaningfully affect your rights or our handling of your data), we will provide at least 30 days' advance notice via (a) an email to the address associated with your account and (b) an in-Service banner on every page. Your continued use of the Service after the effective date of a change constitutes acceptance of the updated Policy.
Prior versions of this Policy are archived at /privacy-archive. If you would like a copy of a specific prior version, email useflipbooks@gmail.com.
Prospective only. Material changes to this Policy apply only to personal information collected or processing activities occurring on or after the effective date of the revised Policy. Personal information collected under a prior version will continue to be processed in accordance with the version in effect at the time of collection, unless you affirmatively accept the new Policy (for example, by continuing to use the Service after receiving in-Service notice).
Version retention. We retain every superseded version of this Policy, including the exact wording in effect at each point in time, for a minimum of seven (7) years at /privacy-archive. Prior versions are hash-stamped (SHA-256) in our internal records so that we can produce a specific prior wording on request.
For any question, request, or complaint regarding this Policy or our handling of your personal information, contact our Privacy Contact: