JOHN GEANTASIO CPA LLC

Privacy Policy

Effective Date: April 1, 2026  |  Last Updated: April 1, 2026

Applicable to: johngeantasiocpa.com and all related communications

1. Who We Are

John Geantasio CPA LLC (“we,” “our,” “us,” or “the Firm”) is a licensed public accounting firm located in Spring Lake, New Jersey. We provide tax preparation, tax planning, bookkeeping, and financial advisory services to individuals and businesses.

This Privacy Policy explains how we collect, use, protect, and share your personal information when you interact with our website (johngeantasiocpa.com), contact us by phone or SMS, use our client portal, schedule appointments, or engage with us in any other capacity.

By using our website or services, you agree to the practices described in this Policy.

2. Information We Collect

2.1 Information You Provide Directly

We collect personal information that you voluntarily provide to us, including:

• Full name
• Email address
• Phone number (including mobile number)
• Mailing address
• Tax identification numbers and Social Security Numbers (only as required to perform licensed accounting services)
• Financial records, income documents, and supporting tax data
• Business entity information
• Appointment scheduling details submitted via Calendly or our booking system
• Messages submitted through our website contact forms
• Information provided through our client portal

2.2 Information Collected Automatically

When you visit our website, we may automatically collect:

• IP address
• Browser type and version
• Operating system
• Pages visited, time on page, and referral source
• Device identifiers
• Cookie data and similar tracking technologies

2.3 Information Collected Through Communications

When you contact us by phone or SMS, we may collect:

• Your phone number
• The content and timing of your communications
• Records of consent to receive SMS or voice communications
• Call duration and connection data

3. How We Use Your Information

We use your personal information for the following purposes:

• To provide, deliver, and improve our accounting, tax, and financial services
• To communicate with you about appointments, document requests, filing deadlines, and service updates
• To process and respond to inquiries submitted through our website or by phone
• To send appointment reminders, client portal notifications, and service-related alerts via SMS or email (with your consent)
• To comply with applicable federal and state tax laws, professional accounting standards, and IRS regulations
• To fulfill our obligations as a licensed CPA firm under New Jersey state law and AICPA ethical standards
• To detect, prevent, and address fraud, security incidents, or unauthorized access
• To analyze website usage and improve user experience
• To maintain records as required by law or professional licensing obligations

We do not use your personal information for unsolicited marketing, advertising targeting, or sale to third parties.

4. SMS Text Message Communications (A2P Compliance)

This section governs our use of SMS (Short Message Service) text messaging and complies with the Telephone Consumer Protection Act (TCPA), the CTIA Messaging Principles and Best Practices, The Campaign Registry (TCR) guidelines, and all applicable 10DLC (10-Digit Long Code) campaign regulations.

4.1 How We Obtain Your Consent

We will only send you SMS text messages if you have provided your explicit prior written consent. Consent may be obtained through:

• A web form on our website where you enter your mobile number and affirmatively opt in
• A signed client engagement agreement that includes an SMS consent provision
• A verbal opt-in confirmed in writing via a follow-up message

Your consent to receive SMS messages is entirely voluntary. Consent is not a condition of receiving any service from John Geantasio CPA LLC.

4.2 Types of SMS Messages We Send

If you opt in, you may receive the following types of text messages:

• Appointment confirmations, reminders, and rescheduling notices
• Document upload requests and deadline reminders
• Client portal access notifications and alerts
• Filing status updates specific to your account
• Follow-up messages related to an active service engagement

All messages are informational and service-related. We do not send promotional, marketing, or advertising SMS messages.

4.3 Message Frequency

Message frequency varies based on your active service engagement and the stage of your tax or accounting work. You may receive up to 4 messages per month. During peak tax season (January through April), message frequency may increase based on your specific filing timeline.

4.4 Message and Data Rates

Message and data rates may apply. These charges are assessed by your mobile carrier and are not controlled by John Geantasio CPA LLC. Please check your wireless service plan if you are unsure about applicable rates.

4.5 How to Opt Out

You may opt out of SMS communications at any time using any of the following methods:

• Reply STOP to any message from our number. You will receive one final confirmation message, and no further SMS messages will be sent.
• Contact our office directly at the email or phone number listed in Section 14 of this Policy.
• Request removal during any client communication.

After opting out, we will honor your request within one business day. If you opt out and later wish to re-enroll, you may do so by contacting our office or re-submitting consent through our website.

4.6 How to Get Help

Reply HELP to any SMS message to receive our contact information and instructions. You may also contact us directly using the information in Section 14.

4.7 SMS Data Protection

We are committed to protecting your mobile number and SMS consent data. Specifically:

• Your mobile phone number collected for SMS communications will never be sold, rented, or shared with any third party for their marketing or promotional purposes.
• Your SMS opt-in status and consent records are stored securely and are never disclosed to advertising networks, data brokers, or lead generation services.
• This restriction applies regardless of any other data-sharing described elsewhere in this Policy. SMS data is governed by this section exclusively.
• We maintain records of your SMS consent, including the date, time, channel, and method of opt-in, in compliance with TCPA and CTIA record-keeping requirements.

4.8 10DLC Campaign Registration

Our SMS program operates through a registered 10-Digit Long Code (10DLC) campaign in compliance with carrier requirements and The Campaign Registry (TCR) standards. Our registered use case is customer care / appointment and service notification for an accounting and tax services firm. The content of our messages matches our registered campaign use case at all times.

5. Voice Communications, Caller Authentication, and Call Integrity

This section governs our voice call practices and complies with the Telephone Robocall Abuse Criminal Enforcement and Deterrence (TRACED) Act, FCC SHAKEN/STIR (Secure Telephone Identity Revisited / Signature-based Handling of Asserted information using toKENs) mandate, FCC Voice Integrity Program requirements, the Telephone Consumer Protection Act (TCPA), and the National Do Not Call Registry rules.

5.1 SHAKEN/STIR Caller Authentication

All voice calls placed by or on behalf of John Geantasio CPA LLC are transmitted through telephone service providers that are fully compliant with the SHAKEN/STIR framework as mandated by the FCC under the TRACED Act.

This means:

• Calls originate from verified, authenticated telephone numbers assigned to or authorized by our firm.
• We do not spoof, mask, falsify, or misrepresent our caller ID. The number displayed on your caller ID is accurate and belongs to our firm or our authorized representative.
• We use only carriers and Voice over Internet Protocol (VoIP) providers that implement SHAKEN/STIR attestation at the Full (A-level) or partial (B-level) standard. We do not route calls through gateway providers that fail attestation requirements.
• Our calls will not display spam or scam labels when viewed on compliant carrier networks, as our numbers are properly registered and authenticated.

5.2 FCC Voice Integrity Program Compliance

John Geantasio CPA LLC operates in full compliance with the FCC’s Voice Integrity Program, which targets illegal robocalling, call spoofing, and telephone abuse. Specifically:

• We do not engage in or facilitate spoofed calls.
• We do not use overseas gateway providers or aggregators that fail to implement SHAKEN/STIR.
• We work exclusively with domestic, FCC-registered termination providers.
• We do not use voice blasting or mass robocall systems for unsolicited outreach.
• We respond promptly to any traceback requests submitted through the Industry Traceback Group (ITG) or FCC-designated traceback consortium.

5.3 TCPA Compliance for Voice Calls

We comply with all provisions of the Telephone Consumer Protection Act (TCPA) as they apply to voice calls:

• We do not place autodialed or prerecorded voice calls to any individual’s mobile phone without prior express written consent specific to voice calls.
• Any prerecorded or autodialed calls to residential landlines, if used, include an automated opt-out mechanism at the start of the message.
• Consent to receive autodialed or prerecorded calls is documented with a timestamp, method of collection, and the specific consent language presented to the individual.
• Consent to receive autodialed calls is entirely voluntary and is not required to receive any service from our firm.

5.4 Call Recording

John Geantasio CPA LLC may record telephone calls for quality assurance, staff training, or compliance documentation purposes. If a call is being recorded:

• You will be notified at the beginning of the call by an automated announcement or by the staff member who answers.
• Recordings are stored securely and accessed only by authorized personnel.
• We comply with all applicable federal and state call recording consent laws. New Jersey is a one-party consent state under N.J.S.A. 2A:156A-4; however, when we know or reasonably believe you are located in a two-party consent state, we will obtain your consent before recording.
• Call recordings are retained only as long as necessary for the stated purpose and are then securely deleted.

5.5 National Do Not Call Registry

We respect the Federal Trade Commission’s National Do Not Call (DNC) Registry. We will not place unsolicited outbound calls to numbers registered on the DNC Registry unless you have provided us with prior express consent or have an established business relationship with our firm as defined under applicable regulations.

If you wish to be placed on our internal Do Not Call list independent of the national registry, please contact us using the information in Section 14. We will honor all internal DNC requests within 30 days.

5.6 Voicemail Practices

If we leave a voicemail message on your behalf:

• The message will identify John Geantasio CPA LLC by name.
• The message will include a callback phone number.
• We do not use ringless voicemail drop services that bypass your phone’s normal ringing function, as such systems have significant legal exposure under the TCPA.

6. Email Communications

We may send you service-related email communications including appointment confirmations, document request notifications, tax deadline alerts, and client updates. These emails are operational in nature, not promotional.

If we send any marketing or promotional emails, we will provide a clear unsubscribe link in every email. You may unsubscribe at any time by clicking the unsubscribe link or by contacting us directly. We honor all unsubscribe requests within 10 business days, in compliance with the CAN-SPAM Act.

We do not send unsolicited bulk email (spam). We do not share your email address with third parties for their marketing purposes.

7. Sharing of Information

John Geantasio CPA LLC does not sell, rent, or trade your personal information. We share your information only in the following limited and specific circumstances:

7.1 Service Providers

We work with trusted third-party vendors who assist us in operating our business, including:

• Scheduling platforms (e.g., Calendly) for appointment management
• Client portal providers for secure document exchange
• Email and SMS communication platforms for appointment and service notifications
• Cloud storage and data security providers
• CRM and practice management software

All third-party service providers are contractually required to maintain appropriate confidentiality, data security, and privacy standards. They are permitted to use your information only to perform services on our behalf and not for any independent commercial purpose.

7.2 Legal and Professional Obligations

We may disclose information when required to:

• Comply with federal or state law, including IRS regulations and state tax authority requirements
• Respond to valid subpoenas, court orders, or legal process
• Fulfill our professional obligations as a licensed CPA firm under AICPA standards and New Jersey state regulations
• Protect the rights, property, or safety of our firm, our clients, or the public

7.3 Business Transfers

In the event that John Geantasio CPA LLC is involved in a merger, acquisition, restructuring, or sale of professional practice, your information may be transferred to the successor entity, subject to applicable professional confidentiality rules governing CPA client records.

7.4 SMS Data — Absolute Restriction

Notwithstanding anything in this section or elsewhere in this Policy, your mobile phone number and SMS opt-in consent data will never be shared with any third party for marketing, advertising, lead generation, or promotional purposes. This restriction is absolute and unconditional.

8. Cookies and Website Tracking

Our website uses cookies and similar tracking technologies to improve functionality and user experience. Cookies are small data files placed on your device when you visit our site.

We use the following categories of cookies:

• Essential Cookies: Required for basic website functionality such as session management and form submissions. These cannot be disabled without impairing your experience.
• Analytics Cookies: Used to understand how visitors interact with our website (e.g., Google Analytics). Data is aggregated and anonymized where possible.
• Preference Cookies: Remember your settings and preferences for future visits.

You may control cookie settings through your browser preferences. Disabling certain cookies may affect the functionality of portions of our website. We do not use cookies for advertising targeting or behavioral profiling.

9. Data Security

We implement administrative, technical, and physical safeguards designed to protect your personal information from unauthorized access, use, disclosure, alteration, or destruction. These measures include:

• Encrypted transmission of sensitive data using SSL/TLS protocols
• Secure, access-controlled client portal for document exchange
• Role-based access controls limiting information access to authorized personnel only
• Regular security reviews and staff training on data handling practices
• Secure destruction of physical documents and electronic records in accordance with IRS and state record retention guidelines

No method of data transmission over the internet or electronic storage is completely secure. While we take reasonable precautions, we cannot guarantee absolute security. If you believe your information has been compromised through interaction with our firm, please contact us immediately.

10. Data Retention

We retain your personal information for as long as necessary to:

• Fulfill the purposes described in this Policy
• Maintain our professional records as required by IRS regulations (generally a minimum of 7 years for tax records)
• Comply with New Jersey state law and AICPA record retention standards
• Resolve disputes and enforce our agreements

SMS consent records and opt-in/opt-out logs are retained for a minimum of 4 years to comply with TCPA statute of limitations requirements. Call records and voicemail logs are retained in accordance with applicable legal and professional requirements.

When your information is no longer required, we dispose of it securely and in a manner consistent with professional standards.

11. Your Rights and Choices

Depending on your state of residence, you may have certain rights regarding your personal information. We honor these rights regardless of whether they are legally mandated in your state.

11.1 Right to Know

You have the right to request information about the categories and specific pieces of personal information we have collected about you, the purposes for which it was collected, and whether it has been shared with third parties.

11.2 Right to Correct

If you believe any information we hold about you is inaccurate or incomplete, you have the right to request a correction. Given the nature of tax and accounting services, accurate personal data is essential, and we encourage you to keep us informed of any changes.

11.3 Right to Delete

You may request deletion of your personal information. Please note that certain information may be exempt from deletion where retention is required by law (e.g., IRS record retention rules), necessary to complete a transaction, or required for our legitimate professional compliance obligations.

11.4 Right to Opt Out of Communications

You may opt out of SMS communications by replying STOP, opt out of email communications by using the unsubscribe link, or request removal from all communications by contacting us directly. Opting out of marketing communications does not affect service-related messages necessary to complete your active engagement with us.

11.5 California Residents

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including the right to know, delete, correct, and opt out of the sale or sharing of your personal information. We do not sell personal information. To exercise your California rights, contact us using the information in Section 14.

11.6 New Jersey Residents

New Jersey residents have rights under the New Jersey Data Privacy Act (NJDPA), effective January 15, 2025, including the rights to access, correct, delete, and opt out of the processing of personal data for targeted advertising or profiling purposes. We do not engage in targeted advertising or profiling. To exercise your NJDPA rights, contact us using the information in Section 14.

11.7 How to Submit a Request

To exercise any of the rights described above, please contact us in writing using the information in Section 14. We will respond to all verifiable consumer requests within 45 days. We may request that you verify your identity before processing your request.

12. Children’s Privacy

Our website and services are not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will delete that information promptly. If you believe we have inadvertently collected such information, please contact us immediately.

13. Third-Party Websites and Links

Our website may contain links to third-party websites, including scheduling tools, government tax portals, or educational resources. This Privacy Policy applies only to johngeantasiocpa.com and our direct communications. We are not responsible for the privacy practices of third-party websites. We encourage you to review the privacy policies of any external sites you visit through links on our website.

14. Contact Us

If you have questions about this Privacy Policy, wish to exercise your privacy rights, want to opt out of communications, or have a concern about our data practices, please contact us:

John Geantasio CPA LLC

Spring Lake, New Jersey

Website: johngeantasiocpa.com

Phone: +1 732-974-8811
Email: donna@johngeantasio.com

For SMS-related requests, you may also reply STOP (to opt out) or HELP (for assistance) directly to any text message from our number.

For Do Not Call requests, you may also contact us at the address above and we will process your request within 30 days.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or regulatory guidance. When we make material changes, we will update the “Last Updated” date at the top of this Policy and, where appropriate, notify active clients by email or through the client portal.

Your continued use of our website or services after the effective date of any changes constitutes your acceptance of the updated Policy. We encourage you to review this Policy periodically.

This Privacy Policy has been prepared to comply with the TCPA, CTIA Messaging Principles, The Campaign Registry (TCR) 10DLC standards, FCC SHAKEN/STIR mandate (TRACED Act), FCC Voice Integrity Program, CAN-SPAM Act, CCPA/CPRA, New Jersey Data Privacy Act, and applicable IRS and AICPA professional confidentiality standards. This document does not constitute legal advice. John Geantasio CPA LLC recommends periodic review with qualified legal counsel to ensure continued compliance as regulations evolve.

---

Contact Information

If you have questions about this Privacy Policy or how your information is handled, please contact:

John E Geantasio CPA LLC
Phone: +1 732-974-8811
Email: donna@johngeantasio.com