Your privacy is our priority

Your privacy and the security of your financial information are central to how we operate.

Introduction

Zion Accounting & Tax ("Zion," "we," "us," or "our") handles some of the most sensitive information a person or business has: financial records, tax data, and identifying information. As a professional accounting, bookkeeping, and tax services firm, protecting that information isn't a footnote to our work, it's a condition of it.

This Privacy Policy covers how we collect, use, share, and safeguard your information when you visit our website (zionaccountingtax.com), use our services (bookkeeping, payroll, tax preparation, business advisory, and related offerings), communicate with us by phone, email, or our secure client portal, or otherwise engage with us professionally.

By using our website or services, you're agreeing to this policy. If you don't agree with its terms, please don't use our website or services.

Information We Collect

Personal information we may collect includes your full name, business name and DBA, mailing address, email, phone number, and fax number; identification details such as Social Security Number, Employer Identification Number, Tax Identification Number, driver's license or state ID, date of birth, and passport information for international clients.
Financial information includes bank account details, credit card information, investment account data, income documentation (W-2s, 1099s, K-1s), expense records and receipts, current and prior tax returns, financial statements, loan and debt records, property and asset ownership, business revenue and expense data, and payroll information.
Employment and business information includes your employer, job title, business entity structure, licenses and registrations, industry classification, and employee data where payroll services apply.
Family and dependent information, where relevant to your engagement, may include spouse and dependent details, beneficiary designations, estate planning information, and family members employed within your business.
Professional information includes details about your CPA, attorney, financial advisor, or other service providers you've authorized us to coordinate with.
Information collected automatically when you visit our website includes IP address, browser and device type, operating system, screen resolution, referring site, pages viewed, time on page, links clicked, on-site search terms, and visit timestamps, gathered through cookies and similar tracking technologies.
Information from third parties may come from financial institutions, government agencies (such as IRS transcripts or state tax records), other professionals you've authorized, and third-party platforms like QuickBooks or payroll software.

How We Use Your Information

We use your information to deliver our services: recording and reconciling transactions, preparing financial statements, processing payroll and filing related forms, preparing and filing tax returns, developing tax planning strategies, providing business advisory and financial guidance, representing you before tax authorities when needed, and supporting estate or succession planning where applicable.

We also use it to communicate with you, schedule appointments, send reminders and deadline notices, deliver reports and documents, and provide support; to meet legal obligations such as filing required forms, responding to lawful requests, complying with court orders, maintaining records as required, and reporting as mandated by anti-money laundering law; to improve our services through website analytics, feature development, and internal training; and to run our business, including billing, vendor management, fraud prevention, and enforcing our Terms of Service.

How We Protect Your Information

We apply industry-standard safeguards: 256-bit SSL/TLS encryption for data in transit, encrypted storage, a secure password-protected client portal with multi-factor authentication, regular security audits and vulnerability testing, firewall and intrusion detection systems, ongoing software patching, controlled-access office facilities, locked physical files, secure destruction of paper and electronic records, employee background checks, and confidentiality agreements for all staff and contractors.

We hold ourselves to recognized professional standards, including AICPA guidelines, IRS Circular 230, applicable state board of accountancy requirements, the NIST Cybersecurity Framework, and IRS Publication 4557 on safeguarding taxpayer data.

A Note on How We Communicate

Because of how seriously we treat data security, we maintain strict policies around documents and correspondence.

We don't accept sensitive information by email. Please don't send documents or confidential details as email attachments. High email volume means attachments can be missed or lost, so all clients use the secure client portal to upload documents instead, giving us a protected, documented record. We do not open attachments sent via email, regardless of sender.
We don't click links or open attachments from unsolicited email. Any message, from a client or otherwise, containing links, buttons, or attachments asking us to "verify" or "access" something will be deleted without being opened. This is a firm-wide policy, not a judgment call made case by case.

Current clients should use the secure portal for questions and requests, both for security and to keep a clear written record of communications.

If you have any doubt about whether we'd respond to an email, here's the short version: if we don't already know you or haven't spoken with you directly, we will not engage with unsolicited email and will delete it on receipt. This isn't personal, it's how we keep client data safe.

Questions about any of this? Call us directly at +1 760-916-7428.

How We Share Your Information

We do not sell, rent, or trade your personal information for marketing purposes, period.

We may share information only in these limited circumstances: with your explicit consent (for example, coordinating with your attorney or financial advisor at your request); with trusted service providers who support our operations, such as accounting software platforms, payroll processors, our client portal provider, cloud storage, CRM tools, and payment processors, all of whom are contractually bound to confidentiality; with government agencies as legally required, including the IRS, state tax authorities, and the Social Security Administration; for legal compliance, including subpoenas, court orders, or protecting our legal rights; and in the event of a business transition such as a merger or sale, in which case you'd be notified of the change and your options.

Your Rights and Choices

You can access the personal information we hold about you, request corrections, request copies of documents we've prepared on your behalf, and review your account history by contacting us through the secure client portal or by email.

You can opt out of marketing communications at any time via the unsubscribe link in any marketing email or by contacting us directly. Service-related communications, such as deadline reminders or document requests, aren't optional opt-outs since they're necessary to deliver the service you've engaged us for.

California residents have additional rights under the CCPA, including the right to know what's collected, the right to deletion, the right to opt out of sale (which, again, we don't do), and the right to non-discrimination for exercising these rights. Reach us at privacy@zionaccountingtax.com or +1 760-916-7428 to exercise them.

EEA residents have rights under GDPR, including access, rectification, erasure, restriction of processing, and data portability.

Data Retention

Retention periods are driven by legal and professional requirements, not convenience: federal tax returns and payroll records are retained a minimum of seven years, state tax returns per applicable state requirements, and bookkeeping records, financial statements, and client engagement files for seven years following termination of the engagement. After these periods, information is securely deleted or destroyed unless you request otherwise, we have a legitimate ongoing business need, or law requires longer retention.

Cookies and Tracking Technologies

Our website uses cookies, small text files stored on your device, to support core functionality (essential cookies), understand site usage (analytics cookies, including Google Analytics), enable certain features (functional cookies), and in some cases support marketing efforts. You can manage cookie preferences through your browser settings, and you can opt out of Google Analytics tracking specifically through Google's Analytics Opt-out Browser Add-on.

Third-Party Links

Our site may link to outside resources such as IRS.gov, state tax agency sites, or accounting software platforms. We aren't responsible for the privacy practices of any third-party site you visit from a link on ours.

Children's Privacy

Our services are intended for individuals 18 and older. We don't knowingly collect information from anyone under 18, and if we discover we've inadvertently done so, we'll delete it promptly.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or technology. Updates will be posted here with a revised "Last Updated" date, and continuing to use our services after changes take effect means you accept the updated terms.

Professional Confidentiality

As accounting and tax professionals, we're bound by recognized codes of ethics and confidentiality obligations, including the AICPA Code of Professional Conduct, IRS Circular 230, and applicable state law.

Contact Us

Questions about this policy or want to exercise your privacy rights?

Email: privacy@zionaccountingtax.com

Phone: +1 760-916-7428

Privacy Officer

Zion Accounting & Tax
39520 Murrieta Hot Springs Rd
Murrieta, CA 92563

Existing clients can also submit privacy requests directly through the secure client portal. We respond to privacy inquiries within 30 days, or 45 days for CCPA-specific requests.