Privacy Policy

1. Introduction

JRN Business Solutions Co. ("JRN," "we," "us," or "our") is committed to protecting your privacy and safeguarding your personal information. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our website, platform, and services.

By using our services, you consent to the practices described in this Privacy Policy. If you do not agree with this Privacy Policy, please do not use our services.

This Privacy Policy complies with the Data Privacy Act of 2012 (Republic Act No. 10173) of the Philippines and other applicable data protection laws.

2. Information We Collect

2.1 Personal Information

We collect personal information that you provide directly to us, including:

• Contact Information: Full name, email address, phone number, business address, city, state, postal code.
• Identification Documents: Government-issued IDs (Driver's License, Passport, SSS ID, PhilHealth ID, Pag-IBIG ID, National ID, TIN ID, etc.).
• Business Information: Business name, DTI/SEC registration details, tax identification numbers, business address.
• Financial Information: Bank account details (when required for specific services), payment information, financial statements.
• Account Credentials: Username, password (encrypted), account number.
• Service-Related Documents: Articles of Incorporation, permits, licenses, contracts, receipts, invoices, payroll records, and other documents required for service provision.

2.2 Automatically Collected Information

When you use our website or platform, we automatically collect:

• Technical Information: IP address, browser type and version, operating system, device information.
• Usage Information: Pages visited, time spent on pages, navigation paths, referring URLs.
• Cookies and Tracking Technologies: Session cookies, preference cookies (see Section 8 for details).

2.3 Information from Third Parties

We may receive information about you from:

• Government agencies (DTI, SEC, BIR, local government units) in the course of providing services.
• Service providers and partners who assist in service delivery.
• Publicly available sources (business registries, public records).

3. How We Use Your Information

We use your information for the following purposes:

3.1 Service Provision

• Processing business registrations, permits, and licenses.
• Filing tax returns and compliance documents.
• Providing bookkeeping and accounting services.
• Managing payroll and employee records.
• Consulting and advisory services.

3.2 Account Management

• Creating and managing your user account.
• Authenticating your identity.
• Communicating service updates and notifications.
• Providing customer support.

3.3 Legal and Compliance

• Complying with legal obligations and government requirements.
• Responding to legal proceedings and regulatory inquiries.
• Preventing fraud and unauthorized activities.
• Enforcing our Terms of Service.

3.4 Business Operations

• Improving our services and user experience.
• Analyzing usage patterns and service effectiveness.
• Conducting internal research and development.
• Maintaining security and integrity of our systems.

3.5 Communication

• Sending service-related notifications and updates.
• Responding to inquiries and support requests.
• Providing information about new services (with your consent).

4. Data Security and Encryption

We implement industry-standard security measures to protect your information:

4.1 Encryption

• All uploaded documents are encrypted using AES-256-CBC encryption before storage.
• Encrypted files are stored with .enc extension and cannot be accessed without decryption keys.
• Database entries containing sensitive information (file names, file paths, ID types) are encrypted using AES-256-CBC.
• File integrity is verified using HMAC-SHA256 authentication.
• Encryption keys are securely stored and never exposed in code or public areas.

4.2 Access Controls

• Role-based access control (RBAC) limits data access to authorized personnel.
• Multi-factor authentication options for enhanced account security.
• User documents are accessible only to the account owner and authorized administrators.
• All access to sensitive data is logged and monitored.

4.3 Secure Transmission

• All data transmitted between your browser and our servers is encrypted using SSL/TLS protocols.
• HTTPS is enforced across our entire platform.

4.4 Physical Security

• Servers are housed in secure, access-controlled facilities.
• Regular security audits and vulnerability assessments.
• Backup systems with encryption for disaster recovery.

4.5 Secure File Handling

• Original unencrypted files are permanently deleted after encryption.
• Decrypted files are only created temporarily when you view documents and are immediately deleted after serving.
• No permanent copies of decrypted files are stored on our servers.

5. Data Retention

5.1 Retention Period

We retain your personal information for as long as:

• Your account remains active.
• Required to provide services to you.
• Necessary to comply with legal obligations (typically 5–10 years for financial and tax records as required by Philippine law).
• Needed to resolve disputes or enforce our agreements.

5.2 Deletion Requests

You may request deletion of your personal information at any time. However, we may retain certain information as required by law or for legitimate business purposes (e.g., tax compliance, audit trails).

5.3 Automatic Deletion

Inactive accounts may be automatically deleted after a specified period of inactivity (e.g., three years), with prior notice sent to your registered email.

6. Information Sharing and Disclosure

We do not sell, rent, or trade your personal information. We share your information only in the following circumstances:

6.1 Government Agencies

• DTI, SEC, BIR, and local government units as required for service provision.
• Regulatory bodies for compliance and reporting purposes.
• Law enforcement when legally required.

6.2 Service Providers

• Cloud hosting providers (with encrypted data storage).
• Payment processors (with limited financial information).
• IT service providers and security consultants (under strict confidentiality agreements).

6.3 Legal Requirements

• In response to court orders, subpoenas, or legal processes.
• To protect our rights, property, or safety.
• To prevent fraud or illegal activities.
• To enforce our Terms of Service.

6.4 Business Transfers

• In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity, subject to the same privacy protections.

6.5 With Your Consent

• When you explicitly authorize us to share information with specific third parties.

7. Your Rights and Choices

Under the Data Privacy Act of 2012 and other applicable laws, you have the following rights:

7.1 Right to Access

You have the right to request access to your personal information and obtain a copy of the data we hold about you.

7.2 Right to Rectification

You may request correction of inaccurate or incomplete personal information.

7.3 Right to Erasure

You may request deletion of your personal information, subject to legal retention requirements and ongoing obligations.

7.4 Right to Data Portability

You have the right to receive your personal information in a structured, commonly used format and transmit it to another service provider.

7.5 Right to Object

You may object to the processing of your personal information for direct marketing or other purposes not essential to service delivery.

7.6 Right to Withdraw Consent

Where processing is based on consent, you may withdraw your consent at any time.

7.7 How to Exercise Your Rights

To exercise any of these rights, contact us at: dpo@jrnbusinesssolutions.com.
Include your full name, account number, and specific request. We will respond to your request within 30 days.

8. Cookies and Tracking Technologies

8.1 What Are Cookies

Cookies are small text files stored on your device when you visit our website.

8.2 Types of Cookies We Use

• Essential Cookies: Required for platform functionality (login, session management).
• Preference Cookies: Remember your settings and preferences.
• Analytics Cookies: Help us understand how you use our services.

8.3 Cookie Management

You can control cookies through your browser settings. Note that disabling essential cookies may affect platform functionality.

9. Children’s Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will delete it immediately.

10. International Data Transfers

Your information is primarily stored and processed in the Philippines. If we transfer data internationally, we ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy and applicable laws.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on our website with the updated "Last Updated" date. We encourage you to review this Privacy Policy periodically.

Material changes will be communicated via email or prominent notice on our platform.

12. Data Breach Notification

In the event of a data breach that may affect your personal information, we will:

• Notify affected users within 72 hours of discovery.
• Report to the National Privacy Commission as required by law.
• Take immediate steps to contain and remedy the breach.
• Provide guidance on protective measures you can take.

13. Third-Party Links

Our platform may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to read their privacy policies before providing any personal information.

14. Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact:

JRN Business Solutions Co.
Data Privacy Officer
Email: jrndocumentation@gmail.com
Phone: 0922 687 0260
Address: Unit 4-7 2nd floor Ziane Commercial Building Corporation Lot 40-A Marcos Highway Pinugay Baras Rizal, Philippines

National Privacy Commission
Website: https://www.privacy.gov.ph
Email: info@privacy.gov.ph
Hotline: (02) 8234-2228

15. Consent

By using our services, you consent to the collection, use, and disclosure of your information as described in this Privacy Policy.

16. Acknowledgment

BY USING OUR SERVICES, YOU ACKNOWLEDGE THAT YOU HAVE READ, UNDERSTOOD, AND AGREE TO THIS PRIVACY POLICY.