Privacy Policy

Last updated: December 2025

SalesTaxAPI ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our API service and website.

1. Information We Collect

1.1 Information You Provide

When you create an account or use our Service, you may provide:

  • Account Information: Email address, name, company name
  • Payment Information: Credit card details (processed securely by Stripe)
  • Communication: Messages you send to our support team

1.2 Information Collected Automatically

When you use our Service, we automatically collect:

  • API Usage Data: Endpoints accessed, request timestamps, response codes
  • Log Data: IP addresses, browser type, device information
  • Analytics: Pages visited, features used, session duration

1.3 Information We Do NOT Collect

We do not collect or store sensitive personal information such as social security numbers, tax returns, or financial statements. Our API only processes ZIP codes and state information to return tax rates.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our Service
  • Process your transactions and manage your subscription
  • Send you technical notices, updates, and support messages
  • Respond to your comments, questions, and customer service requests
  • Monitor and analyze usage patterns to improve user experience
  • Detect, investigate, and prevent fraudulent or unauthorized activity
  • Enforce our Terms of Service and protect our legal rights

3. How We Share Your Information

We may share your information in the following circumstances:

3.1 Service Providers

We share information with third-party vendors who provide services on our behalf:

  • Stripe: Payment processing
  • Supabase: Database hosting and authentication
  • Vercel: Website hosting
  • Analytics providers: Usage analytics (anonymized)

3.2 Legal Requirements

We may disclose information if required by law or if we believe disclosure is necessary to:

  • Comply with legal process or government requests
  • Enforce our Terms of Service
  • Protect our rights, privacy, safety, or property
  • Protect against legal liability

3.3 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any change in ownership or use of your information.

4. Data Retention

We retain your information for as long as necessary to:

  • Provide the Service to you
  • Comply with legal obligations
  • Resolve disputes and enforce agreements

Specifically:

  • Account data: Retained while your account is active, plus 30 days after deletion
  • API usage logs: Retained for 90 days for analytics and debugging
  • Billing records: Retained for 7 years for tax and legal purposes

5. Data Security

We implement industry-standard security measures to protect your data:

  • Encryption: All data is encrypted in transit (TLS 1.3) and at rest
  • API Keys: Hashed using bcrypt before storage; raw keys are never stored
  • Access Controls: Strict role-based access to production systems
  • Infrastructure: Hosted on SOC 2 compliant providers (Supabase, Vercel)
  • Monitoring: 24/7 security monitoring and incident response

However, no method of transmission over the Internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

6. Your Rights and Choices

6.1 Access and Update

You can access and update your account information at any time through your dashboard at salestaxapi.io/dashboard.

6.2 Delete Your Account

You may request deletion of your account by contacting us at privacy@salestaxapi.io. Upon deletion, we will remove your personal information within 30 days, except for data we are required to retain for legal purposes.

6.3 Export Your Data

You may request a copy of your data in a portable format by contacting privacy@salestaxapi.io.

6.4 Opt-Out of Marketing

You can opt out of marketing emails by clicking the "unsubscribe" link in any marketing email or by updating your preferences in your dashboard.

7. Cookies and Tracking

We use cookies and similar technologies to:

  • Keep you logged in to your account
  • Remember your preferences
  • Analyze usage patterns
  • Improve our Service

You can control cookies through your browser settings. Note that disabling cookies may affect the functionality of the Service.

Types of Cookies We Use

TypePurpose
EssentialRequired for authentication and security
FunctionalRemember preferences and settings
AnalyticsUnderstand how users interact with our Service

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure that such transfers comply with applicable data protection laws and that appropriate safeguards are in place.

9. Children's Privacy

Our Service is not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If we learn that we have collected information from a child under 13, we will delete that information promptly.

10. California Privacy Rights (CCPA)

If you are a California resident, you have the right to:

  • Know what personal information we collect about you
  • Request deletion of your personal information
  • Opt out of the sale of your personal information (we do not sell personal information)
  • Non-discrimination for exercising your privacy rights

To exercise these rights, contact us at privacy@salestaxapi.io.

11. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have the right to:

  • Access your personal data
  • Rectify inaccurate personal data
  • Erase your personal data
  • Restrict processing of your personal data
  • Data portability
  • Object to processing
  • Lodge a complaint with a supervisory authority

Our legal basis for processing your data includes: performance of a contract, legitimate interests, and your consent where applicable.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.

13. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us:

  • Email: privacy@salestaxapi.io
  • Support: support@salestaxapi.io

By using SalesTaxAPI, you acknowledge that you have read and understood this Privacy Policy and agree to the collection and use of your information as described herein.