Privacy Policy

Effective Date: September 22, 2025
Last Updated: September 22, 2025

ItalianTaxes.com (“we,” “our,” “us”) respects your privacy and is committed to protecting your personal and financial information. This Privacy Policy explains how we collect, use, disclose, and protect your data when you use our website www.italiantaxes.com (the “Site”), our online tax tools, and related services. By using the Site, you agree to the practices described herein.

1. Data Controller / Service Provider

For EU users, the data controller is:
ItalianTaxes
Email: support@italiantaxes.com

For U.S. users, ItalianTaxes acts as a service provider under applicable U.S. state laws, including the California Consumer Privacy Act (CCPA/CPRA).

2. What Information We Collect

We collect and process both personal information and sensitive financial/tax information that you provide or that we obtain in connection with our services. This includes:

A. Information You Provide

• Identifiers: Name, date of birth, nationality, tax identification numbers (U.S. SSN/ITIN, Italian Codice Fiscale), passport/ID details
  
• Contact information: Email address, phone number, mailing address
  
• Financial information: Bank account details, payment card data (processed via secure payment providers), investment details, pension data
  
• Tax-related information: Income records, rental agreements, mortgage statements, property ownership documents, prior tax returns, employment contracts, invoices, and other financial records required to prepare and file Italian tax returns
  
• Login credentials: If you create an account with us
  
• Communication data: Records of emails, chats, or support requests
  

B. Information Collected Automatically

• Device and usage data: IP address, browser type, operating system, device identifiers
  
• Website activity: Pages visited, date and time of access, referring website
  
• Cookies and tracking technologies: As detailed in our Cookie Policy
  

C. Sensitive Information

In connection with tax filing and financial advisory, we may process sensitive categories of data, including:

• Financial account numbers and income information
  
• Social Security Numbers, Taxpayer IDs, and government-issued identification
  
• Tax-exempt status or residency classifications

This information is collected only where necessary to provide tax compliance services and is handled with the highest security safeguards.

3. How We Use Your Information

We use your information to:

• Prepare, calculate, and file Italian tax returns
  
• Provide tailored tax guidance and related services
  
• Process payments and issue invoices
  
• Verify your identity to prevent fraud
  
• Comply with Italian, EU, and U.S. legal obligations
  
• Communicate with you about your account, filings, and service updates
  
• Improve our Site and user experience
  
• With your consent, send newsletters, promotions, or marketing communications
  

4. Legal Basis for Processing (EU GDPR)

• Contractual necessity: To provide tax and advisory services you request
  
• Legal obligations: To comply with Italian and EU tax laws
  
• Legitimate interests: Fraud prevention, security, analytics
  
• Consent: For marketing and optional data processing
  

5. U.S. Privacy Disclosures (CCPA/CPRA & State Laws)

If you are a U.S. resident, you have rights under applicable U.S. privacy laws, including:

• Right to Know: Access to the categories and specific pieces of personal information we collect
  
• Right to Delete: Request deletion of personal information, subject to legal record-keeping obligations
  
• Right to Correct: Request correction of inaccurate information
  
• Right to Opt-Out: Control over the sale or sharing of personal information (note: we do not sell your data)
  
• Right to Non-Discrimination: You will not be discriminated against for exercising your privacy rights
  

To exercise these rights, contact privacy@italiantaxes.com.

6. Sharing of Data

We may share your data with:

• Authorized service providers: Payment processors, cloud storage, IT infrastructure providers
  
• Professional tax advisors: For review or assistance with filings
  
• Legal and regulatory authorities: Where required by Italian, EU, or U.S. law
  
• Business partners: Limited sharing with contracted third parties assisting in service delivery
  

We do not sell or rent your personal information.

7. International Data Transfers

Data may be transferred between the EU, Italy, and the U.S. We use Standard Contractual Clauses (SCCs) or other recognized safeguards for international transfers to ensure your information is adequately protected.

8. Data Retention

• Tax records and filings: Retained for at least 10 years in accordance with Italian law
  
• Account and contact information: Retained until you request deletion
  
• Cookies/analytics data: Retained per our Cookie Policy
  

9. Your Rights

EU Users (GDPR)

• Access, rectify, delete, restrict, or object to processing
  
• Data portability
  
• Withdraw consent
  
• Lodge a complaint with the Italian Data Protection Authority
  

U.S. Users

• Right to know, delete, correct, opt-out, and non-discrimination (as detailed above)
  

10. Cookies and Tracking

We use cookies, pixels, and similar technologies for:

• Essential site functionality
  
• Analytics and performance measurement
  
• Marketing (with your consent)
  

See our Cookie Policy for details.

11. Security of Data - Data Encryption and Security Infrastructure

We apply strict technical and organizational measures, including: Encryption of sensitive data (in transit and at rest); Restricted access to tax/financial information; Secure servers and firewalls; and regular audits and compliance reviews

Data Encryption and Security Infrastructure

We are committed to safeguarding your personal and financial information with industry-leading security practices. To achieve this, our platform leverages Supabase, a secure infrastructure provider that is independently audited and certified for compliance with recognized international standards. Supabase holds SOC 2 Type 2 certification and is HIPAA compliant, demonstrating adherence to rigorous requirements for data confidentiality, integrity, and availability.

All user data is protected using multiple layers of encryption:

• Encryption at Rest: Data stored within our databases is encrypted using AES-256, one of the strongest encryption standards currently available.
  
• Encryption in Transit: All data transmitted between your device and our servers is encrypted using TLS (Transport Layer Security), ensuring information cannot be intercepted or altered in transit.
  
• Application-Level Encryption: Sensitive elements, such as access tokens, API keys, and authentication details, are encrypted at the application level before being persisted in the database.
  

Supabase also implements additional enterprise-grade safeguards, including:

• Regular third-party security audits and penetration testing to proactively identify and mitigate vulnerabilities.
  
• Role-based access controls and strict authentication mechanisms to ensure that only authorized personnel can access protected environments.
  
• Continuous monitoring for anomalies and suspicious activity within its infrastructure.
  

By relying on Supabase’s infrastructure, we combine their enterprise-grade security framework with our own internal protocols to maintain a secure environment for your tax data. While no system can ever guarantee absolute security, we take every reasonable and appropriate step to ensure your information is stored, processed, and transmitted under the highest security standards available.

12. Use of Artificial Intelligence (AI)

We utilize Artificial Intelligence (AI) technologies within our platform to enhance the accuracy, speed, and reliability of tax preparation services. AI may be used to:

• Assist in generating draft versions of tax forms, reports, or related documentation;
  
• Perform calculations based on the information you provide;
  
• Support the automation of data organization, error detection, and formatting for official filings.
  

When you provide information through our platform, it may be processed by AI systems to deliver these services. However, we have implemented strict safeguards to ensure your privacy and confidentiality:

1. No External Sharing with AI Providers: Inputs (your data) and outputs (documents, calculations, reports) are not shared with OpenAI or any other external AI service providers. The AI tools integrated into our platform are configured to operate without transmitting your information outside our secured environment.
   
2. Disabled Feedback Loops: We have disabled all feedback-sharing mechanisms that would otherwise allow AI providers to retain, learn from, or reuse the information entered by users. This means your data is never used to train external AI models.
   
3. Controlled Use: AI is used only as a support tool to streamline and improve the preparation of your documentation. The final responsibility for accuracy remains with you, as the user, and with our expert-backed review process, where applicable.
   
4. Data Protection and Security: All information processed by AI is subject to the same strict data protection, storage, and confidentiality protocols described elsewhere in this Privacy Policy.
   

By using our platform, you acknowledge and agree that AI may be used in these limited ways to provide you with a more efficient tax preparation experience, subject always to the security and restrictions outlined above.

13. Children’s Privacy

Our services are intended for adults. We do not knowingly collect personal data from children under 18.

13. Changes to This Policy

We may update this Privacy Policy periodically. Updates will be posted on this page with a new “Last Updated” date.

14. Contact Us

For privacy questions or rights requests:

Email: support@italiantaxes.com