Legal
Privacy Policy
Last updated: 1 April 2025
Taficon (“we”, “our”, “us”) operates taficon.app — a tax and financial intelligence platform for Indian taxpayers. This Privacy Policy explains what information we collect, how we use it, and the choices you have. By using Taficon you agree to this policy.
1. Information We Collect
1.1 Information you provide directly
- Account details: name, email address, and optionally a phone number when you sign up via Google or email.
- Financial data: income figures, deductions, and investment details you enter into our calculators and planner tools. This data is stored locally in your browser and, if you are signed in, synced to your account.
- Bank statements: PDF or CSV files you upload for analysis. These are processed to extract transaction data and are not shared with third parties.
- Contact form submissions: name, email, phone number, and message when you reach out via our contact form.
- Consultation requests: details you submit when booking a CA consultation.
1.2 Information collected automatically
- Usage data: pages visited, features used, calculator interactions, and time spent — collected via Google Analytics 4 (GA4).
- Device and browser information: IP address, browser type, operating system, and referral URL — collected by GA4 and Microsoft Clarity.
- Cookies and local storage: we use cookies for authentication sessions and localStorage to persist your calculator inputs between visits.
2. How We Use Your Information
- Provide, operate, and improve the Taficon platform and its features.
- Authenticate your account and keep your saved data secure.
- Process bank statements and generate financial insights for you.
- Send transactional emails (e.g., calculation summaries, consultation confirmations).
- Respond to your support requests and contact form submissions.
- Analyse aggregate usage patterns to improve our products (no individual profiling).
- Comply with applicable Indian laws and regulations.
We do not sell, rent, or trade your personal data to any third party for marketing purposes.
3. Cookies
We use the following types of cookies:
- Strictly necessary cookies: Firebase Authentication session cookies required for you to stay logged in.
- Analytics cookies: Google Analytics 4 cookies (GA4) that help us understand how visitors use the site. Data is anonymised where possible.
- Behaviour analytics: Microsoft Clarity session recordings and heatmaps to understand UI usability. No personally identifiable data is captured.
You can disable cookies in your browser settings. Disabling strictly necessary cookies will prevent you from logging in.
4. Third-Party Services
We use the following third-party services that may process your data:
| Service | Purpose | Data Shared |
|---|---|---|
| Firebase (Google) | Authentication & database | Email, account data |
| Convex | Backend data storage | Saved calculations, transactions |
| Razorpay | Payment processing | Name, email, amount |
| Google Analytics 4 | Usage analytics | Anonymised usage events |
| Microsoft Clarity | UX analytics | Session recordings (no PII) |
| Web3Forms | Contact form submission | Name, email, message |
| Resend | Transactional email | Email address |
Each third-party service has its own privacy policy. We encourage you to review them. Razorpay is PCI-DSS compliant — we never store your card details.
5. Data Retention
- Account data: retained as long as your account is active. Deleted within 30 days of account deletion.
- Bank statements: uploaded files are processed and the raw file is not permanently stored. Extracted transaction data is kept until you delete it.
- Analytics data: GA4 retains event data for 14 months by default.
- Contact form submissions: retained for up to 12 months for support follow-up purposes.
6. Your Rights
As a user, you have the right to:
- Access the personal data we hold about you.
- Request correction of inaccurate data.
- Request deletion of your account and associated data.
- Withdraw consent for analytics cookies at any time via browser settings.
- Lodge a complaint with a relevant data protection authority.
To exercise these rights, email us at privacy@taficon.app. We will respond within 30 days.
7. Security
We implement industry-standard security measures including HTTPS encryption, Firebase security rules for database access control, and regular security reviews. No method of transmission over the internet is 100% secure — we cannot guarantee absolute security, but we work hard to protect your data.
8. Children's Privacy
Taficon is intended for adults aged 18 and above. We do not knowingly collect data from children under 18. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.
9. Governing Law
This Privacy Policy is governed by the laws of India, including the Information Technology Act 2000, the Information Technology (Amendment) Act 2008, and applicable rules thereunder. Any disputes shall be subject to the jurisdiction of courts in India.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by updating the “Last updated” date at the top of this page and, where appropriate, by email. Your continued use of Taficon after changes constitutes acceptance of the revised policy.
11. Contact Us
For any privacy-related questions or requests:
- Email: privacy@taficon.app
- Contact form: taficon.app/contact