Copyright © ReclaimlyTax
ReclaimlyTax — Privacy Policy
Last updated: 11 July 2025
ReclaimlyTax, Inc. (“ReclaimlyTax,” “we,” “our,” or “us”) is committed to protecting the privacy of the businesses and individuals who use our website and related services (“Services”). This Privacy Policy explains what information we collect, how we use it, whom we share it with, and the choices you have.
This Policy applies when you visit reclaimlytax.com, create an account, complete our 15-minute tax-credit audit, upload payroll or tax files, connect third-party services (such as Gusto or QuickBooks), or communicate with us by email, phone, or chat.
Business and contact information
We collect your legal entity name, Employer Identification Number (EIN), owner or officer name, email address, phone number, and mailing address when you complete our forms.
Payroll and tax data
When you upload files or connect integrations, we receive employee counts, wages, Form 941 returns, W-2 totals, and other relevant financial details.
Technical data
We automatically log your IP address, browser type, device identifiers, pages visited, referring URLs, and cookies when you browse our site.
Communication data
If you contact us, we may store support tickets, call recordings (with notice), and email correspondence.
We do not intentionally collect sensitive personal data such as racial origin, health information, or biometric identifiers.
We use the information you provide to perform and deliver the Services, including calculating credit eligibility and filing claim forms. We maintain security and prevent fraud by authenticating logins and monitoring suspicious activity. We improve and develop features by analyzing aggregated usage metrics and running A/B tests. We send onboarding tips, product updates, and limited marketing communications, which you may opt out of at any time. We also comply with legal obligations by keeping audit logs and responding to lawful requests.
Our primary legal bases—where applicable—are contractual necessity (providing the Services), legitimate interests (security, improvement, limited marketing), consent (optional communications), and legal obligations (record-keeping and compliance).
We never sell your data. We share it only with:
All vendors are vetted for strong security standards (for example, SOC 2) and bound by data-processing agreements.
We employ AES-256 encryption at rest and TLS 1.2+ in transit. Payroll integrations use read-only OAuth tokens, so we cannot alter your systems. Access controls follow the principle of least privilege, and all access is logged and monitored. We conduct annual third-party penetration tests and maintain a SOC 2 Type II program.
We keep payroll and tax documents for seven years in line with IRS record-keeping guidelines. Account and billing records are retained for the life of your account plus seven years. Cookie identifiers typically persist for 12 months. Aggregated, non-identifiable analytics may be stored indefinitely. You may request earlier deletion unless retention is required for legal or audit reasons.
Residents of the EU or UK also have rights to portability, objection, and restriction; contact us to exercise them.
Our Services are directed to business owners, not children under 13. We do not knowingly collect data from minors. If you believe a minor has provided personal information, please contact us for deletion.
We host data in the United States. If you access the Services from another region, you consent to the transfer and processing of your information in the U.S. We rely on Standard Contractual Clauses or equivalent safeguards for EU/UK transfers.
We may update this Policy from time to time. Material changes will be posted here with a revised “Last updated” date and, where appropriate, sent to account holders by email.
