CB CPA Services
Effective date: January 1, 2023
Last updated: January 1, 2026
1) Who we are
CB CPA Services and Christopher Bordelon, CPA LLC (“CB CPA,” “we,” “us,” or “our”) primarily provides certified public accounting, tax, and advisory services. This Privacy Policy explains how we collect, use, disclose, and protect personal information when you visit:
https://www.cbcpaservices.com (the “Site”),
Interact with us, or use our client tools (e.g., secure portals, organizers, e‑signature, scheduling).
If you have questions, contact us at:
Email: [email protected]
Phone: (469) 747-0447
Mail: 7460 Warren Pkwy Ste 100 Frisco, TX 75034
2) Scope—who and what this policy covers
This policy applies to information we collect online (our Site, client portal, email, chat, forms) and offline (phone, in‑person) in connection with our services. Some services and platforms we use (e.g., a secure client portal or e‑signature provider) have their own privacy terms; those terms govern your use of those tools in addition to this policy.
Because we provide tax and financial services, some information we handle may be subject to additional laws and professional standards, such as the Gramm‑Leach‑Bliley Act (GLBA) and the FTC Safeguards Rule, IRS rules (including Internal Revenue Code §7216 and related regulations) for tax return information, and state privacy laws (including the Texas Data Privacy and Security Act (TDPSA)). Where these laws apply, we protect and use your information accordingly, even if certain consumer rights differ.
Important for tax clients: We will not disclose or use your tax return information for purposes other than preparing, assisting in preparing, or obtaining services for your tax return unless permitted by law or with your informed, written consent as required under IRC §7216.
3) Information we collect
The types of information we collect depend on how you interact with us. Categories may include:
Identifiers: name, alias, postal address, email address, phone number, government IDs (e.g., SSN/EIN, state ID or driver’s license), signature.
Client/tax/financial records: income and payroll data, bank/financial account details, tax forms (e.g., W‑2s, 1099s, K‑1s), investment and retirement information, business records, invoices, receipts.
Commercial information: records of services purchased, engagement scope, billing, and payment history.
Internet or device activity: IP address, device and browser type, pages visited, time on site, referring/exit pages, and cookie/analytics data.
Geolocation data (approximate, derived from IP).
Professional/employment information: employer, title, entity ownership details.
User content: communications, uploads, forms, questionnaires, organizer responses.
Inferences: service preferences, likelihood of needing extensions or specific services, created from other data.
We collect information directly from you, automatically (e.g., via cookies/analytics), and from third parties (e.g., payroll providers, financial institutions, prior accountants, public records, or service vendors you authorize).
4) How we use information
We use personal information to:
Provide professional services (tax preparation, accounting, attest, and advisory), including engagement setup, planning, and deliverables.
Operate our Site and portals, maintain security, debug, and prevent fraud.
Comply with law and standards, including GLBA, IRS regulations (e.g., §7216), professional standards, peer review, and recordkeeping.
Communicate with you about services, deadlines, filings, policy updates, and changes in laws that affect you.
Process payments and billing.
Improve services and user experience, including analytics, quality control, training, and developing new offerings.
Market our services (subject to your choices); we do not sell your personal information.
Protect rights and safety, and respond to audits, examinations, subpoenas, or legal requests.
5) Our legal bases (if you are in the EEA/UK)
Where GDPR/UK GDPR applies, we rely on legal bases including contract, legal obligation, legitimate interests (e.g., to secure systems, improve services), and consent (where required, e.g., certain marketing or cookies). You can withdraw consent at any time where consent is the basis.
6) Disclosures of information
We disclose personal information as needed for the purposes above, including to:
Vendors/Service Providers under contract (e.g., client portal, e‑signature, cloud hosting, data backup, analytics, payment processors, email service, IT/security, tax research tools). These parties must use information only as instructed.
Referral/engagement partners you authorize (e.g., attorneys, financial advisors, payroll providers).
Governmental authorities, courts, regulators, or auditors, when required by law, subpoena, examination, peer review, or to protect rights and safety.
Successors or affiliates in a merger, acquisition, or reorganization (your information remains protected under this policy or a successor policy of equal or greater protection).
We do not sell personal information and do not share it for cross‑context behavioral advertising in states that define “share” separately. If this changes, we will update this policy and provide required opt‑outs.
7) Cookies, analytics, and tracking
We use cookies and similar technologies to operate the Site, remember preferences, and analyze traffic. Categories may include:
Strictly necessary (security, session management).
Functional (preferences, performance).
Analytics (e.g., Google Analytics).
Marketing (only if and when we advertise; disabled by default).
Your choices: You can manage cookies through your browser settings and (if implemented) our cookie banner or preferences center. Disabling cookies may affect Site functionality.
8) Email marketing and texting
With your consent, where required, we may send newsletters or service updates. You can unsubscribe at any time via the link in our emails or by contacting us. For SMS, you can reply STOP to opt out.
9) Data retention
We retain information only as long as necessary for the purposes set out in this policy, to comply with legal, regulatory, and professional obligations (e.g., engagement file retention, attest/tax records), to resolve disputes, and to enforce agreements. Retention periods vary by record type and applicable law.
10) Security
We maintain administrative, technical, and physical safeguards designed to protect personal information, consistent with professional standards and the FTC Safeguards Rule (e.g., risk assessments, access controls, encryption, multi‑factor authentication for remote access where appropriate, secure transmission and storage, employee training, vendor oversight, and incident response). No method of transmission or storage is 100% secure, but we strive to protect your data.
11) Children’s privacy
Our Site and services are not directed to children under 13, and we do not knowingly collect personal information from them. If you believe a child under 13 has provided personal information, contact us to request deletion.
12) Your privacy rights
A) Texas residents (TDPSA)
Depending on applicability and thresholds under the Texas Data Privacy and Security Act, Texas consumers may have rights to confirm processing, access and obtain a copy of personal data, correct inaccuracies, delete personal data, and opt out of targeted advertising or profiling. Some data we process (e.g., GLBA‑regulated financial data or tax return information) may be exempt from certain state privacy rights. We will honor applicable rights requests consistent with legal exemptions.
B) Residents of other U.S. states with privacy laws
If you reside in a state with consumer privacy rights (e.g., CA, CO, CT, UT, VA), you may have similar rights. The scope of your rights can vary and may not apply to GLBA‑regulated data or tax return information protected by federal law.
C) EEA/UK residents
Where GDPR/UK GDPR applies, you may have rights to access, rectify, erase, restrict, port, and object to processing, and to lodge a complaint with a supervisory authority.
How to exercise rights:
Submit a request to [email protected] with your name, contact information, and the nature of your request. We will verify your identity and respond within the applicable timeframe. You may designate an authorized agent as permitted by law. If we deny a request, you may appeal by replying to our decision email with “Appeal” in the subject line.
13) Financial privacy & IRS §7216 (tax return information)
For clients engaging us for tax services, we handle your tax return information in compliance with federal law. We do not disclose or use tax return information for purposes other than preparing or assisting in the preparation of your return without your consent, except as allowed by law (e.g., quality review, e‑filing, or legal requirements). Where required, we will present you with a separate written consent explaining any additional uses or disclosures and your choices.
14) Client portals, organizers, and e‑signature
If you use our secure portal, organizer, file exchange, or e‑signature tools, those platforms may process your information on our behalf. Use is subject to those platforms’ terms in addition to this policy. We require vendors to protect your data and to process it only under our instructions.
15) Payments
If you pay online, your payment information is processed by our payment processor. We do not store full card numbers on our systems. The processor’s privacy and security terms apply to your payment transaction.
16) International transfers
If you are outside the United States, your information may be transferred to and processed in the U.S. (and other countries where our providers operate), which may have different data protection laws than those in your country. Where required, we implement appropriate safeguards.
17) Do Not Track
Some browsers offer “Do Not Track” signals. We currently do not respond to these signals. You can manage cookies and targeted advertising preferences as described above.
18) Changes to this policy
We may update this policy from time to time. Changes will be posted on this page with a new “Last updated” date. Material changes will be highlighted or otherwise communicated as appropriate.
19) Contact us
If you have questions or concerns about this Privacy Policy or our data practices, contact:
CB CPA Services
c/o Christopher Bordelon, CPA LLC
Email: [email protected]
Phone: (469) 747-0447
Mail: 7460 Warren Pkwy Ste 100 Frisco, TX 75034