Security Policy
Comprehensive data protection and security measures
Effective Date: August 6, 2025AES-256
Encryption Standard100%
2FA Required5 Min
Auto-Delete24/7
Security ResponseSecurity-First Architecture
TaxCheckMe AI was built with security as the foundation. Every component prioritizes data protection and user privacy.
Authentication Security
Mandatory Two-Factor Authentication
All TaxCheckMe AI accounts MUST use 2FA. This exceeds industry standards.
- TOTP Standard: Time-based One-Time Passwords (RFC 6238)
- Compatible Apps: Google Authenticator, Authy, Microsoft Authenticator
- Backup Codes: Cryptographically secure recovery codes
- No SMS: More secure than SMS-based 2FA
- Mandatory Setup: Required during registration
- Zero Trust: Every access requires verification
Data Encryption
Bank-Level Protection
All data encrypted using AES-256 with regularly rotated keys.
- AES-256: Industry-standard encryption for all stored data
- TLS 1.3: Latest security for all communications
- Key Management: Secure key storage with rotation
- Perfect Forward Secrecy: Session keys can't be compromised retroactively
Privacy-First Architecture
Privacy by Design
Personal identifiers never exposed to AI systems.
- Data Anonymization: Personal info stripped before AI processing
- No Email Collection: Username-only system
- Temporary Processing: Documents never permanently stored
- Auto-Delete: Files deleted within 5 minutes
Security Contact & Response
Security Reporting
Security Issues: admin@taxcheckme.ai
Emergency Response: 24-hour response guaranteed
Bug Bounty: Responsible disclosure rewarded
Vulnerability Assessment: Continuous monitoring
Secure by Design, Protected by Practice
Your data security is our highest priority. Every feature is built with privacy and protection in mind.