Data Protection
Privacy Policy
Sovereign Tax & Salary is committed to protecting your privacy. This policy explains how we collect, use, and safeguard your information when you use our salary and tax calculation services.
Last updated: January 2026 | Effective date: January 1, 2026
Our Commitment to Privacy
Discretion is fundamental to our service
Sovereign Tax & Salary is designed for professionals who value discretion. We understand that salary and tax information is sensitive, and we've built our platform with privacy as a core principle.
Our calculators are designed to process most data client-side, meaning your salary figures and tax calculations happen in your browser, not on our servers. We do not require account creation to use our core tools, and we minimize data collection to only what's necessary to improve our services.
This privacy policy applies to all users of sovereignsalary.com and our associated services. By using our platform, you agree to the practices described in this policy.
Information We Collect
What data we process and why
Calculation Inputs
When you use our calculators, we process salary amounts, location selections, job titles, and filing status to generate results.
Usage Analytics
Anonymous page views, feature usage patterns, calculator interactions, and navigation paths.
Device Information
Browser type, operating system, screen resolution, and device category (mobile/desktop).
Contact Information
Email address provided when contacting our support or concierge service.
What We Do NOT Collect
- Bank account numbers, credit card details, or financial credentials
- Government ID numbers (Social Security, National Insurance, Tax File numbers)
- Official tax return documents or filings
- Passwords or authentication credentials for other services
- Biometric data or facial recognition information
- Precise location data or GPS coordinates
How We Use Your Information
The purposes of data processing
Primary Uses
- •Generate accurate salary and tax calculations based on your inputs
- •Respond to your inquiries and provide customer support
- •Improve our calculation accuracy and add new features
- •Maintain platform security and prevent abuse
Aggregated Analytics
- •Identify which calculators and features are most popular
- •Detect and resolve technical issues and errors
- •Optimize performance across different devices and regions
- •Inform decisions about new countries and jurisdictions to add
Third-Party Services
External services we rely on
We partner with carefully selected third-party service providers to deliver our platform. These providers are contractually obligated to protect your data and only process it as we instruct.
Vercel
Privacy Policy →Purpose: Website hosting and content delivery
Data processed: Server logs, IP addresses (anonymized)
Google AdSense
Privacy Policy →Purpose: Advertising and monetization
Data processed: Cookie identifiers, browsing patterns for ad personalization
Google Fonts
Privacy Policy →Purpose: Typography and font delivery
Data processed: IP address for font file requests
Data Security
How we protect your information
Technical Measures
- TLS 1.3 encryption for all data in transit
- SOC 2 Type II compliant hosting infrastructure
- Regular security audits and penetration testing
- Automated vulnerability scanning
Organizational Measures
- Role-based access controls for team members
- Mandatory security training for all staff
- Incident response procedures and playbooks
- Log rotation every 30 days for access logs
Data Breach Notification
In the unlikely event of a data breach involving personal information, we will notify affected users and relevant supervisory authorities within 72 hours as required by GDPR. Notification will include details of the breach, types of data affected, and steps you can take to protect yourself.
Your Rights
Control over your personal data
Under GDPR, CCPA, and other data protection regulations, you have the following rights regarding your personal data:
Right to Access
You can request a copy of any personal data we hold about you.
Email concierge@sovereign.io with your request.
Right to Rectification
You can request correction of inaccurate personal data.
Contact us with the specific data to be corrected.
Right to Erasure
You can request deletion of your personal data ("right to be forgotten").
Submit a deletion request to our privacy team.
Right to Restrict Processing
You can limit how we use your data in certain circumstances.
Specify the restriction in your request to us.
Right to Data Portability
You can receive your data in a machine-readable format.
Request a data export via email.
Right to Object
You can object to processing based on legitimate interests.
Contact us explaining your objection.
Right to Withdraw Consent
You can withdraw consent for optional data processing at any time.
Update your cookie preferences or contact us.
Response Timeline
We will respond to all data rights requests within 30 days. Complex requests may take up to 60 days, and we will notify you of any extension within the initial 30-day period. There is no fee for exercising your rights unless requests are manifestly unfounded or excessive.
International Data Transfers
How we handle cross-border data
Sovereign Tax & Salary operates globally and may transfer your data to countries outside your residence for processing. When we transfer data internationally, we ensure appropriate safeguards are in place:
- EU-US Data Privacy Framework: For transfers to US-based processors that are certified under the framework
- Standard Contractual Clauses (SCCs): EU-approved contractual terms for international transfers
- Adequacy Decisions: Transfers to countries recognized by the EU as providing adequate protection
- Binding Corporate Rules: Where applicable with multinational service providers
Children's Privacy
Protecting minors
Sovereign Tax & Salary is designed for adults making professional salary and tax decisions. We do not knowingly collect personal information from children under 16 years of age. If we become aware that we have inadvertently collected data from a child under 16, we will take steps to delete it promptly. If you believe we may have collected information from a minor, please contact us immediately at concierge@sovereign.io.
Data Retention
How long we keep your data
| Data Type | Retention Period |
|---|---|
| Calculator inputs (salary, location) | Session only - not stored |
| Contact/support correspondence | Until deletion requested |
| Analytics (page views, features) | 24 months (then aggregated) |
| Server logs (IP addresses) | 30 days |
| Cookie data | Per cookie type (see above) |
Frequently Asked Questions
Common privacy questions answered
Do you sell my personal data?
No. Sovereign Tax & Salary does not sell, rent, or trade personal information to third parties for marketing purposes. We only share data with service providers necessary to operate our platform, and they are contractually bound to protect your information.
How do you protect my data?
We employ industry-standard security measures including encryption in transit (TLS 1.3), secure hosting on SOC 2 compliant infrastructure, regular security audits, and role-based access controls. We do not store sensitive financial data like bank accounts or tax filing numbers.
Can I use the calculators without being tracked?
Yes. Our calculators process data client-side where possible. You can also disable non-essential cookies through your browser settings or our cookie preferences. Core calculator functionality works without any tracking.
What happens if there's a data breach?
In the unlikely event of a data breach affecting personal information, we will notify affected users and relevant supervisory authorities within 72 hours as required by GDPR. We will provide details of the breach and steps you can take.
How long do you keep my data?
Contact information is retained until you request deletion. Analytics data is aggregated and anonymized after 24 months. Session data is temporary and cleared when you close your browser. We do not retain calculation inputs beyond the session.
Are you GDPR compliant?
Yes. We comply with the General Data Protection Regulation (GDPR) for EU/EEA users, the California Consumer Privacy Act (CCPA), and other applicable data protection laws. You have full control over your data as outlined in the user rights section.
Changes to This Policy
How we notify you of updates
We may update this privacy policy from time to time to reflect changes in our practices, technologies, legal requirements, or for other operational reasons.
For significant changes, we will post a prominent notice on our website at least 30 days before the changes take effect. Minor changes will be reflected in the "Last updated" date at the top of this policy. We encourage you to review this policy periodically.
Contact Our Privacy Team
If you have questions about this privacy policy, want to exercise your data rights, or have concerns about how we handle your information, please contact us:
Data Protection Officer
For EU/EEA users, our data protection practices are overseen by our designated DPO. Contact via the email above with "DPO Request" in the subject line.