Last updated: June 3, 2025

Moss Adams LLP and affiliated entities provide professional services, including tax, financial advisory, and consulting services to private and publicly-traded businesses, non-profit and governmental organizations, and individuals. This Privacy Policy applies to information about you obtained on www.mossadams.com (the “Website”) and in connection with the services we provide (the Website and services collectively referred to herein as the “Services”) by Moss Adams LLP and affiliated entities (referred to herein as “we,” “us,” “our”).

This Privacy Policy describes how we may collect, use, and disclose information that identifies, relates to, or could reasonably be linked to you (“Personal Information”); the choices you have regarding our use of your Personal Information; how we safeguard the Personal Information we collect; and how to contact us regarding our privacy practices.

Baker Tilly US, LLP, Baker Tilly Advisory Group, LP and Moss Adams LLP and their affiliated entities operate under an alternative practice structure in accordance with the AICPA Code of Professional Conduct and applicable laws, regulations and professional standards. Baker Tilly Advisory Group, LP and its subsidiaries, and Baker Tilly US, LLP and its affiliated entities, trading as Baker Tilly, are members of the global network of Baker Tilly International Ltd., the members of which are separate and independent legal entities. Baker Tilly US, LLP and Moss Adams LLP are licensed CPA firms that provide assurance services to their clients. Baker Tilly Advisory Group, LP and its subsidiary entities provide tax and consulting services to their clients and are not licensed CPA firms. By accessing or otherwise using the Services, you agree to the collection, use, and disclosure practices and other activities as described in this Privacy Policy.

This Privacy Policy contains the following sections:

• Personal Information we collect
• Use of Personal Information
• Legal bases for processing Personal Information
• Online analytics and advertising
• Disclosure of Personal Information
• Links to third party sites
• Social features
• Your rights and choices
• Security and retention
• Children’s privacy
• Notice for California residents
• International residents
• Revisions
• Contact Us

Personal Information we collect

• Information you provide directly to us

We collect certain Personal Information about you that you provide to us through the Services. For example, you may provide Personal Information when you fill out the Website’s Contact Us form and other online forms; register for and attend events, such as webinars, conferences, and seminars; post public comments on certain Website content; access client portals; pay invoices; sign up for email newsletters; engage with our Services, seek customer support, or answer pop-up polls.

Personal Information you may submit through the Website includes your name, email address, company affiliation, job title, postal address, phone number, fax number, username, password, employment-related details, information related to services we provide you (e.g., financial information via the Client Portal) and any other Personal Information you choose to disclose. In some cases, you may choose not to provide Personal Information, but this may prevent you from being able to use certain features of the Services.

• Information collected automatically through online technologies

We may also automatically collect certain information about you when you access or use the Website (“Usage Information”). Usage Information may include IP address, device identifier, browser type, operating system, information about your use of the Website (e.g., pages and content viewed), referring/exit pages, and data regarding network-connected hardware (e.g., computer or mobile device).

The methods that may be used to collect Usage Information include:

Log Information: Log information is data about your use of the Website, such as IP address, browser type, internet service provider, referring/exit pages, operating system, date/time stamps, and related data, and may be stored in log files.

Information Collected by Tracking Technologies: Cookies, web beacons, embedded scripts (also known as “tracking pixels”), location-identifying technologies, device recognition technologies, and other tracking technologies (“Tracking Technologies”) may be used to collect information about your interactions with the Website. Brief descriptions of common Tracking Technologies are provided below.

Cookies

A cookie is a small text file that is stored on a user’s device. There are two basic categories of cookies, first-party and third-party. They are both served to visitors to our Website. First-party cookies are directly served by us, while third-party cookies are served on behalf of us by our vendors. More specifically, we use cookies for the following purposes:

• Necessary Cookies. These cookies are necessary for the Website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the Website will not work without the cookies enabled. 
• Performance Cookies. These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our Website. They help us to know which pages are the most and least popular and see how visitors move around the Website.
• Preferences Cookies. These cookies enable the Website to provide enhanced functionality and personalization. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies, then some or all of the functionality of the Website may not function properly.
• Targeting Cookies. These cookies may be set on our Website by our advertising partners. They may be used by these vendors to build a profile of your interests and show you relevant advertisements on other sites as you browse the web. If you do not allow these cookies, you will experience less online advertising targeted to you, although you will still see generic or contextual online advertising.

Web beacons

Web beacons are small graphic images, also known as “Internet tags” or “clear gifs,” embedded in web pages. Web beacons may be used, for example, to count the number of visitors to the Website, to monitor how users navigate the Website, and to count content views.

Embedded scripts

An embedded script is a small piece of code designed to collect information about your interactions with the Website. The code is loaded dynamically from our web server, or from a third party with which we work, and is active only while you are on the Website.

• Information collected from third party sources

We also may obtain information about you from other sources, including third-party services. Such collection may occur on certain parts of the Website that are powered and facilitated by third parties. We will treat such data in accordance with this Privacy Policy. We are not responsible or liable for the accuracy of the information provided by third parties or for third-party policies or practices.

In connection with providing the Services, we enter into contracts with our clients that describe the scope of services for which information is collected and used. We may obtain your Personal Information in the course of providing professional services to our clients. A client that provides us with third-party Personal Information is responsible for obtaining from such third parties the consents that may be required by law or regulation to allow such production. Individuals who engage us may need to provide their Personal Information for us to perform the services requested.

Use of Personal Information

We and or our service providers use your Personal Information for various purposes depending on the types of information we have collected from and about you, to:

• Respond to your requests for information and provide you with more effective and efficient service
• In accordance with applicable law, contact you by email, postal mail, or phone regarding our and partner products, services, surveys, research studies, promotions, special events, and other subjects that we think may be of interest to you
• Customize the content you see on the Services
• Help us better understand your interests and needs and improve the Services, including through research and reports, and test and create new products, features, and services
• Secure our Services and resolve technical issues being reported
• Comply with any procedures, laws, and regulations that apply to us where it is necessary for our legitimate interests or the legitimate interests of others
• Establish, exercise, or defend our legal rights where it is necessary for our legitimate interests or the legitimate interests of others

Combined Information. For the purposes discussed in this Privacy Policy, we may combine the information that we collect through the Services with information that we receive from other sources, both online and offline, and use such combined information in accordance with this Privacy Policy.

Aggregated/De-Identified. We may aggregate and/or de-identify information collected through the Services so that such information does not identify you as the source of the information. We may use such information to improve the Services, for research and marketing purposes, and may also disclose such data to third parties, including advertisers, promotional partners, customers, and sponsors.

Legal Bases for Processing Information

Certain jurisdictions (such as the EU, UK and Brazil) require us to inform you of the legal bases on which we process Personal Information.  Our legal bases for processing Personal Information are the following: (i) you have expressly consented to a particular processing activity; (ii) such processing is necessary for the performance of a contract where we have been engaged to provide services; (iii) to meet legal, regulatory or professional standards obligations; (iv) to protect your vital interests; or (v) the processing is necessary to perform activities in furtherance of our lawful and legitimate interests. Examples of such lawful and legitimate interests for use of data in our possession or control include conducting internal administrative activities, marketing our Services and analyzing our marketing efforts, and enhancing and personalizing a visitor’s experience on our Website.

Online analytics and advertising

We may engage and work with service providers and other third parties to serve advertisements on third-party services. These ads may be tailored to your interest based on your use of the Website and elsewhere on the internet, sometimes referred to as “interest-based advertising” and “online behavioral advertising,” which may include sending you an ad on a third-party service after you have left the Website (i.e., “retargeting”).

We may use Google Analytics, Adobe Analytics, or other service providers for analytics services. These analytics services may use cookies and other Tracking Technologies to help us analyze Website users and how they use the Website. Information generated by these services (e.g., your IP address and other Usage Information) may be transmitted to and stored by these service providers and these service providers may use this information for purposes such as evaluating your use of the Website, compiling statistic reports on the Website’s activity, and providing other services relating to Website activity and other internet usage.

To manage these activities, please see the “Your rights and choices” section below.

Disclosure of Personal Information

We will disclose your information in the following ways:

• Affiliates and Subsidiaries. We may disclose the information we collect with our affiliates and/or subsidiaries to deliver our Services to you, ensure a consistent level of service, and enhance our Services and your customer experience.
• Service Providers. We provide access to or disclose your information to select third parties who perform services on our behalf. They have access to perform these services but are prohibited from using your information for other purposes. They provide various services to us, including billing, sales, marketing, product content and features, advertising, analytics, research, customer service, data storage, security, fraud prevention, professional advisors, benefit providers and insurers, payment processing, and legal services.
• Protection of Us and Others. By using the Services, you acknowledge and agree that we may access, retain and disclose the information we collect and maintain about you if required to do so by law or in a good faith belief that such access, retention or disclosure is reasonably necessary to: (a) comply with legal process (e.g., a subpoena or court order); (b) enforce our legal terms, this Privacy Policy, or other contracts with you, including investigation of potential violations thereof; (c) respond to claims that any content violates the rights of third parties; (d) respond to your requests for customer service; and/or (e) protect the rights, property or personal safety of us, our agents and affiliates, our users and/or the public.
• Business Transfers. As we continue to develop our business, we may buy, merge, or partner with other companies. Personal Information may be among the transferred assets in such transactions (including in contemplation of such transactions). If a portion or all of our assets are sold or transferred to a third party, Personal Information would likely be one of the transferred business assets. If such transfer is subject to additional mandatory restrictions under applicable laws, we will comply with such restrictions.
• Consent. We may also disclose your information to a third party when you affirmatively consent to such disclosure.

Information you disclose publicly or to others. The Website may permit you to post or submit User-Generated Content (“UGC”) including, without limitation, written content, comments, files, user profiles, pictures or photos, data, or other content. If you choose to submit UGC to any public area of the Website, your UGC will be considered “public” and will be accessible by anyone, including us. Notwithstanding anything to the contrary, unless otherwise explicitly agreed by us, Personal Information included in UGC is not subject to our usage or disclosure limitations, or other obligations, under this Privacy Policy or otherwise, and may be used and shared by us and third parties to the fullest extent not prohibited by applicable law. We encourage you to exercise caution when making decisions about what you disclose in such public areas.

Additionally, the Website may offer you the option to send a communication to a friend or other contact. If so, we rely on you to only send to people that have given you permission to do so. The recipient’s Personal Information you provide (e.g., name, e-mail address) will be used to facilitate the communication. Your contact information and message may be included in the communication.

Links to third-party sites

This Website may contain links to other websites or services that are not controlled by us; these links are provided for your convenience and information. We are not responsible for any third party’s data collection or privacy practices, and we encourage you to review the privacy policies or notices posted on those third-party websites for further information.

Social features

Certain functionalities on the Website permit interactions that you initiate between the Website and third-party services, such as social networks (“Social Features”). Social Features enable you to send content between the Website and a third-party service. If you use Social Features, and potentially other third-party services, information you post or provide access to may be publicly displayed by the third-party service you use. Also, both we and the third party may have access to certain information about you and your use of the Website and the third-party service.

Your rights and choices

You have certain rights with respect to your Personal Information as further described in this section.

Your Legal Rights

Your local laws (e.g., in Europe, or in U.S. states with privacy laws containing rights such as in California, Connecticut, Delaware, Minnesota, Montana, Oregon, Tennessee, Texas, and Virginia) may permit you to request that we:

• provide access to and/or a copy of certain Personal Information we hold about you
• provide you with information about categories of Personal Information we collect or disclose about you; the categories of sources of such information; the business or commercial purpose for collecting your Personal Information; and the categories of third parties to which we disclose your Personal Information. For your convenience and so you don’t have to request it, we’ve included that information in this Privacy Policy.
• update Personal Information which is out of date or incorrect
• delete certain Personal Information which we are holding about you
• restrict the way that we process and disclose certain of your Personal Information
• transfer your Personal Information to a third-party provider of services
• revoke your consent for the processing of your Personal Information where our processing of such information was based on your consent

To exercise these rights, please email us at dataprotectionofficer@bakertilly.com or contact us by postal mail sent to:

Baker Tilly Advisory Group, LP
Attention: California Privacy Rights Inquiry
205 North Michigan Avenue
Chicago, IL 60601-5927

If you request to exercise these rights, we will need to verify your identity and may need to verify your relationship with us for security and to prevent fraud. We may take additional steps to verify that you are authorized to make the request. We will not discriminate against you for exercising these rights.

Please note, however, that certain information may be exempt from such requests in some circumstances, including if we need to keep processing your information for our legitimate interests or to comply with a legal obligation. Depending on applicable law, you may have the right to appeal our decision to deny your request (e.g., if you are a resident of Virginia, Minnesota, Montana, Oregon, Tennessee, Texas, Colorado, or Connecticut). If we deny your request, we will provide you with information on how to appeal the decision, if applicable, in our communications with you.

Opting out of Online Tracking and Advertising

As explained above, we may use third-party advertising providers to collect information about your device and online browsing activities for targeted advertising and related purposes so that we can provide you with more relevant and tailored ads regarding our Services. The disclosure of your information to these third parties to assist us in providing these services may be considered a “sale” of Personal Information under applicable law or the processing/sharing of Personal Information for targeted advertising purposes.

If you would like to opt out of our online disclosure such as through cookie and pixel technology of your Personal Information for purposes that could be considered “sales” for those third parties' own commercial purposes, or “sharing” for purposes of targeted advertising, please:

• Use the cookie management tools located on our Website.
• See your browser’s settings for information about blocking or disabling cookies.
• Opt out of Google Analytics by visiting this page or downloading the Google Analytics Opt-out Browser Add-on.
• Opt out of the use of cookies from Adobe Analytics by going to adobe.com/privacy/opt-out.html.
• If you are interested in information about tailored browser advertising and how you can generally control cookies from being put on your computer to deliver tailored advertising, you may visit the Network Advertising Initiative’s Consumer Opt-Out link, the Digital Advertising Alliance’s Consumer Opt-Out link, or Your Online Choices to opt-out of receiving tailored advertising from companies that participate in those programs.

Please note that if you have a legally-recognized browser-based opt-out preference signal turned on via your device browser (e.g., global privacy control), we recognize such preference in accordance with applicable law.

Unsubscribe from marketing

You may instruct us not to use your contact information to contact you by email, postal mail, or phone regarding products, services, promotions and special events that might appeal to your interests by using the Contact Us information below. In commercial email messages, you can also opt-out by following the instructions located at the bottom of such emails. Please note that, regardless of your request, we may still use and disclose certain information as permitted by this Privacy Policy or as required by applicable law. For example, you may not opt out of certain operational emails, such as those reflecting our relationship or transactions with you.

In some of our newsletters and other email communications, we may monitor recipient actions such as email open rates through embedded links within the messages. We and our marketing partners collect this information to gauge interest and to enhance future visitor experiences.

If you do not wish us to confirm whether you have opened, clicked on, or forwarded our email communications, you will need to unsubscribe, as it is not possible for us to send these emails without tracking enabled. Registered subscribers can update their communication preferences at any time by following the instructions in the individual email communications you receive from us.

Security and retention

We use a variety of safeguards to protect your Personal Information, which include physical (e.g., secure office entry), technical (e.g., password protection, network firewalls, laptop encryption, authentication mechanisms), and administrative (e.g., confidentiality agreements, training, procedures that limit access to and use of data) measures. However, no method of transferring data over the internet or storing electronic data is entirely secure, so while we strive to use reasonable means to protect your Personal Information, we cannot guarantee security against all threats.

We retain Personal Information for only so long as necessary for the intended purpose for which it was collected, unless a longer retention period is required or permitted by law or our document retention policies based on professional standards and best practices.

Children's privacy

This Website is not intended for, nor targeted to, children under 13, and we do not knowingly or intentionally collect information from children under 13. If we learn that we have received information directly from a child who is under the legal age of consent in their jurisdiction of residence, we will delete such information as soon as possible.

Notice for California residents

If you are a California resident, you can find our California Notice at Collection here.

International residents

If you are visiting the Website from outside the United States, please be aware that we are based in the United States, and the information we obtain through the Website will be transferred to, processed in, and stored on our servers in the United States, as well as in other locations where we and our vendors operate. The data protection laws and regulations applicable to your Personal Information transferred to the United States and such other locations may be different from the laws in your country of residence.

Revisions

We reserve the right to amend this Privacy Policy at any time to reflect changes in the law, our data collection and use practices, the features of our Services, or technological advances. We will make the revised Privacy Policy accessible through the Services, so you should review the Privacy Policy periodically. You can know if the Privacy Policy has changed since the last time you reviewed it by checking the “Last Updated” date included at the beginning of the document. If we make a material change to the Policy, you will be provided with appropriate notice in accordance with legal requirements. By continuing to use the Services, you confirm that you have read and understood the latest version of this Privacy Policy.

Contact Us

If you have any questions about this Privacy Policy, please email us at dataprotectionofficer@bakertilly.com or call us at +1 (800) 362‑7301.