Privacy summary

• Account information, such as names, email addresses, organization membership, and roles.
• Documents and business data uploaded or entered by customer users.
• Extracted invoice, receipt, weight, pricing, seal, customer, supplier, and line-item data.
• Workflow activity, audit events, corrections, notes, and approval or escalation history.
• Operational data such as logs, device/browser metadata, error reports, and usage metrics.

• To provide document upload, extraction, matching, review, and reconciliation features.
• To authenticate users and enforce organization-level access controls.
• To provide support, troubleshoot errors, secure the service, and monitor reliability.
• To improve customer-specific configuration, such as extraction hints and mapping rules.

See the Data & AI FAQ for more detail about AI processing.

Acerto does not sell customer data and does not share one customer's documents or records with another customer. Data may be processed by service providers used to run Acerto, including hosting, database, storage, error monitoring, analytics, document processing, and AI extraction providers.

Customer data is retained while the customer uses Acerto unless it is deleted or an agreement says otherwise. Deleted document files are removed from active storage on a delayed cleanup cycle. Extracted records, audit history, and backups may remain for a limited period where needed for security, reliability, compliance, or account offboarding.

Customers can request export, deletion, or offboarding through their Acerto representative.

• Acerto requires user authentication.
• Customer data is separated by organization and protected by role-based permissions.
• Uploaded PDFs are stored in private storage.
• Data is encrypted in transit, and hosted infrastructure encrypts customer data at rest.
• AI output is reviewable and editable before customer users make payment decisions.

Customers with privacy questions should contact their Acerto or Connective Solutions representative.