TaxIntake Pro← Back to Home

Legal

Privacy Policy

Last updated: January 1, 2025

1. What We Collect

TaxIntake Pro collects the minimum information necessary to operate the service. Specifically, we collect:

  • Account information: Your name, email address, and firm name when you sign up.
  • Configuration data: Your GoHighLevel credentials (private integration token and location ID) stored encrypted in our database, used solely to connect your account to GHL.
  • Usage data: Basic logs for debugging and support (IP addresses, request timestamps, error messages).

Your clients' data is different.

We collect the minimum information necessary to operate the service: your name, email, and firm information. Your clients' data is transmitted directly to your GoHighLevel account and is NOT stored on our servers.

2. Your Clients' Data

Client intake data — including personal information, Social Security Numbers, income details, and uploaded documents — passes through our servers only in transit and is not stored, logged, or retained by TaxIntake Pro.

When a client completes your intake form:

  1. 1.Their form data is transmitted securely via TLS to GoHighLevel's servers using your credentials.
  2. 2.Uploaded documents are uploaded directly to GoHighLevel's file storage attached to the contact record.
  3. 3.We do not write client PII to our database. We do not log form field values. We do not store SSNs.

The only client-related data we store is a reference token for document upload links (a random hex string with an expiry timestamp) — this token does not contain any client personal information.

3. How We Use Your Information

We use your account information to:

  • Create and manage your TaxIntake Pro account
  • Connect your branded intake forms to your GoHighLevel account
  • Provide customer support and respond to inquiries
  • Send service-related communications (account updates, critical notices)
  • Improve the service through aggregated, anonymized usage analytics

We do not sell your information to third parties. We do not use your information for advertising.

4. Data Security

We take reasonable measures to protect the information we hold:

  • TLS encryption: All data in transit is encrypted using TLS 1.2 or higher.
  • Database security: Your account data is stored in Supabase with row-level security policies. Access requires authentication.
  • GHL credential storage: Your GoHighLevel private integration token is stored in our encrypted database and is only used to authenticate API calls on your behalf.
  • No third-party data sharing: We do not share your account data with third parties except as required to operate the service (Supabase for database, Vercel for hosting).

5. Cookies and Tracking

We use session cookies to maintain your login state (via Supabase Auth). We do not use third-party tracking cookies, advertising pixels, or behavioral analytics tools. We do not track your clients across the web.

6. Data Retention

Your account data is retained as long as your account is active. If you cancel your account, you may request deletion of your account data by emailing us. Client data (which we do not store) is retained in your GoHighLevel account according to GoHighLevel's own policies.

7. Your Rights

You may request access to, correction of, or deletion of your account data at any time by contacting us. We will respond to requests within 30 days.

8. Disclaimer

TaxIntake Pro is not a HIPAA Business Associate and does not provide legal compliance guarantees. We are not a law firm. The privacy practices described here represent our good-faith effort to protect data. Consult your compliance advisor regarding client data handling requirements specific to your jurisdiction and practice.

9. Contact

Questions about this privacy policy? Contact us at towfiqul.pro@gmail.com.