API Authorization Agreement

Terms governing Keeper's access to your QuickBooks Online company data.

Effective date: April 13, 2026
This agreement governs the QuickBooks Online OAuth authorization that Keeper clients complete during onboarding. It supplements — and does not replace — your Engagement Letter. Read both documents before completing the authorization.

By completing the QuickBooks Online authorization process ("Authorization"), you ("Client") agree to the terms below with Keeper Bookkeeping ("Keeper", "we", "us"). If you do not agree, do not complete the Authorization.

1. What You Are Authorizing

By authorizing Keeper's application, you grant Keeper read and write access to your QuickBooks Online company data, including:

  • Chart of Accounts (read and write)
  • Transactions: invoices, bills, expenses, payments, journal entries (read and write)
  • Customers and vendors (read and write)
  • Financial reports: Profit & Loss, Balance Sheet, Cash Flow (read only)
  • Company preferences and settings (read only)

This access is used solely to provide the bookkeeping services described in your Engagement Letter. We do not sell, share, or use your financial data for any other purpose.

2. How We Store and Protect Your Credentials

OAuth tokens (your authorization credentials) are stored encrypted on Keeper's servers using AES-256 Fernet encryption. No employee has plaintext access to your tokens. Your financial data processed during bookkeeping tasks is handled within your dedicated Google Drive client folder and governed by our Privacy Policy. We do not retain raw QuickBooks API response data beyond the active bookkeeping session.

3. Limits on Use

Keeper agrees to:

  • Access your QuickBooks data only during active bookkeeping operations
  • Not share your data with any third party except as required by law
  • Not use your data for advertising, analytics, model training, or resale
  • Apply the principle of least-privilege — we do not request scopes beyond what is needed for bookkeeping

4. Intuit's Role

Your QuickBooks Online data is subject to Intuit's Terms of Service and Privacy Policy. Keeper's application is registered with Intuit as an App Partner but is an independent business. Intuit is not a party to this agreement and is not liable for Keeper's actions.

Intuit stores QuickBooks Online data on servers primarily in the United States, with a backup copy maintained in Canada for Canadian customers. As a US-incorporated company, Intuit is subject to the US CLOUD Act. See our Privacy Policy §5 for full disclosure on cross-border data transfers.

5. Revoking Access

You may revoke Keeper's access at any time through either of these methods:

  • Via QuickBooks: Settings → Apps → Connected apps → disconnect Keeper
  • Via Keeper: Email us at kneilson@keepercom.com and we will delete your stored tokens within 48 hours

Revoking access does not cancel your Engagement Letter — it triggers the termination process defined therein (30-day written notice). On termination:

  • Keeper deletes all stored OAuth tokens for your QuickBooks company
  • Bookkeeping data in your Google Drive folder is returned to you
  • Keeper retains read-only records as required by CRA (7-year retention) — these are stored offline with active access permanently disabled

6. Limitation of Liability

Keeper is not responsible for:

  • Errors, omissions, or inaccuracies in data entered into QuickBooks by you or others
  • Downtime, data loss, or errors caused by Intuit's platform
  • Decisions made by you or your advisors based on reports Keeper produces

Keeper's total liability for claims arising from this Authorization is capped at the lesser of: (a) three months of fees paid under your Engagement Letter, or (b) $5,000 CAD.

7. Privacy and PIPEDA

Keeper collects only the financial data necessary to perform bookkeeping services. Your rights under Canada's Personal Information Protection and Electronic Documents Act (PIPEDA) — including rights to access, correct, and request deletion of your data — are described in our Privacy Policy.

If a data breach occurs that poses a real risk of significant harm, we will notify you and the Office of the Privacy Commissioner within 72 hours.

8. Updates to This Agreement

We may update this agreement to reflect changes in our practices or legal requirements. We will notify active clients by email at least 14 days before material changes take effect. Continued use of the Keeper integration after that date constitutes acceptance of the updated terms.

9. Governing Law

This agreement is governed by the laws of the Province of British Columbia and the applicable laws of Canada. Disputes will be resolved by mediation before litigation, in accordance with your Engagement Letter.

10. Contact

Keeper Bookkeeping
British Columbia, Canada
kneilson@keepercom.com