1. The short version
- Your firm's data is yours. We process it only to run the Service.
- Everything is encrypted in transit (TLS) and at rest, stored in European Union data centres on Google Cloud (Firebase).
- We never sell personal data and never share Firm Data with other firms.
- You can export or delete your data at any time.
2. What we collect
| Category | Examples | Why |
|---|---|---|
| Account data | Name, email, password (stored only as a cryptographic hash), profile photo | Sign-in, account security |
| Firm Data | Clients, cases, documents, invoices, messages your firm enters | Providing the Service — visible only to your firm (and the specific client, where your firm grants portal access) |
| Public profile | Firm name, city, professions, contact details you choose to publish | Shown publicly in the Find-a-Firm directory, only when you enable publishing |
| Contact messages | Name, email, message sent via our Contact page | Responding to your inquiry |
| Technical data | Log and analytics data (page views, device type) | Security, performance and product improvement |
3. How your clients' data is handled
When your firm stores client information in Tax Pilot, your firm is the controller of that data and we act on your firm's behalf. Each firm's workspace is isolated by security rules: no other firm can read it. A client can only see records your firm explicitly shares through the Client Portal, protected by the client's own credentials.
4. Storage and security
- Hosting, database and file storage run on Google Cloud (Firebase) in EU multi-region data centres.
- Access is controlled by per-firm security rules enforced at the database layer, not just in the app.
- Passwords are verified through Google's identity service; we never store plain-text passwords.
5. Sharing
We share data only with the infrastructure providers needed to run the Service (Google Cloud; our payment processor for billing data once payments are enabled) — each bound by their own data protection obligations — or where the law requires it. We do not sell data, run third-party advertising, or share Firm Data between firms.
6. Retention and deletion
Firm Data is retained while your account is active. After account closure it remains exportable for 60 days and is then deleted. Contact-form messages are deleted once handled. You may request deletion at any time at info@taxpilot.com.pk.
7. Your rights
You may access, correct, export or delete your personal data, withdraw the publication of your public profile at any time from your dashboard, and complain to the relevant data protection authority. We respond to verified requests within 30 days.
8. Changes and contact
If this policy changes materially, we will notify account owners by email or in-app notice. Privacy questions: info@taxpilot.com.pk.