Privacy Policy

Last Updated: December 4, 2025

1. Introduction

TaxVault ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our tax automation platform and related services (the "Service").

By using TaxVault, you agree to the collection and use of information in accordance with this policy. If you do not agree with this policy, please do not use our Service.

2. Information We Collect

2.1 Personal Information

When you create an account or use our Service, we may collect:

  • Name and contact information (email address, phone number)
  • Business information (company name, business type, EIN)
  • Tax identification information (Social Security Number for sole proprietors)
  • Billing and payment information
  • Login credentials

2.2 Financial Data

To provide tax calculation services, we collect financial data including:

  • Income and expense transactions from connected accounting platforms
  • Invoice and payment records
  • Contractor payment information (for 1099 generation)
  • Historical tax filing data

2.3 Third-Party Account Data

When you connect third-party services (QuickBooks, FreshBooks, Xero, bank accounts), we receive access to data from those services as authorized by you. This includes transaction data, account information, and other financial records necessary for tax calculations.

3. How We Use Your Information

We use the information we collect to:

  • Calculate your quarterly and annual federal and state tax obligations
  • Generate IRS tax forms (Form 1040-ES, Schedule C, 1099-NEC)
  • Provide tax estimates and financial summaries
  • Send tax deadline reminders and notifications
  • Process payments for our Service
  • Provide customer support
  • Improve our Service and develop new features
  • Comply with legal obligations
  • Detect and prevent fraud or unauthorized access

4. Data Security

We implement industry-standard security measures to protect your data:

  • Encryption: AES-256 encryption for all sensitive data at rest and TLS 1.3 for data in transit
  • Access Controls: Role-based access controls and multi-factor authentication
  • Compliance: SOC 2 Type II compliant infrastructure
  • Secure Storage: Sensitive data like SSN and EIN are encrypted with separate encryption keys
  • Session Security: HttpOnly cookies, automatic session expiration, and server-side session management
  • Audit Logging: Comprehensive logging of all data access for security monitoring

While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

5. Data Sharing and Disclosure

We do not sell your personal information. We may share your information only in the following circumstances:

  • Service Providers: With trusted third parties who assist us in operating our Service (payment processors, cloud hosting providers)
  • Accountant Access: With accountants or tax professionals you explicitly authorize
  • Legal Requirements: When required by law, subpoena, or legal process
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to you)
  • With Your Consent: When you explicitly authorize sharing

6. Third-Party Integrations

Our Service integrates with third-party platforms including:

  • QuickBooks Online (Intuit)
  • FreshBooks
  • Xero
  • Bank account connections (via Plaid)

When you connect these services, you authorize us to access your data according to their respective privacy policies and the permissions you grant. You can disconnect these integrations at any time through your account settings.

7. Data Retention

We retain your data for as long as your account is active or as needed to provide services. Specifically:

  • Account Data: Retained while your account is active
  • Tax Records: Retained for 7 years per IRS requirements
  • Audit Logs: Retained for 3 years
  • Payment Records: Retained as required by financial regulations

You may request deletion of your account and data, subject to legal retention requirements.

8. Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data (subject to legal requirements)
  • Portability: Request export of your data in a machine-readable format
  • Opt-Out: Opt out of marketing communications
  • Disconnect: Disconnect third-party integrations at any time

To exercise these rights, contact us at privacy@taxvault.io or through your account settings.

9. California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to delete personal information, and the right to opt-out of the sale of personal information. We do not sell personal information. To exercise your CCPA rights, contact us at privacy@taxvault.io.

10. Children's Privacy

Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact us at privacy@taxvault.io.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

TaxVault

Email: privacy@taxvault.io

Website: https://taxvault.io