Effective: May 27, 2026
Provider: Digent LLC (Florida limited liability company)
Product: AirGapTax (the "Software")
AirGapTax runs on your computer. Your tax data never leaves your device. We don't collect telemetry, we don't run analytics, and we don't track you. The only data we hold is what's needed to sell you a license and deliver it to your inbox. That's the policy. The rest of this page is the long version.
This Privacy Policy covers two things: the AirGapTax desktop application (the "Software") and the airgaptax.com website (the "Website"), both operated by Digent LLC. They have very different privacy profiles, so we address them separately throughout.
Nothing. AirGapTax is offline-first desktop software. All tax computation runs locally on your device. There is no telemetry, no analytics, no usage tracking, no crash reporting, and no phone-home behavior of any kind.
Specifically:
We cannot access your tax data because we never receive it. There is no server, no database, and no API endpoint on our side that accepts it.
The Software supports optional connections to external AI services such as Groq, Ollama, or any OpenAI-compatible endpoint. These are disabled by default. If you choose to enable one:
We strongly recommend reviewing the data handling practices of any external AI service before sending it tax-related information.
When you visit airgaptax.com or purchase a license, we collect the minimum data required to process your order and deliver your license key. Here is exactly what we store and why:
We do not collect: your name (unless your email contains it), your mailing address, your phone number, your IP address (beyond what's in standard server logs — see Section 6), your browsing behavior, your device fingerprint via the website, or any tax data.
Your data is used for exactly three purposes:
We do not sell, rent, trade, or share your data with anyone for marketing purposes. We do not build profiles. We do not run behavioral analytics. We do not serve ads.
The Website uses the following third-party services. Each has access only to the data required for its specific function:
We do not embed third-party analytics scripts (no Google Analytics, no Mixpanel, no Hotjar, nothing). We do not embed social media tracking pixels. The only third-party scripts loaded on the Website are those required by the active payment processor during checkout.
The Website uses essential cookies only — specifically, those required by the payment processor during the checkout flow and any session cookies needed for the purchase process. We do not use:
Because we use only essential cookies, there is no cookie banner or consent prompt. Under GDPR and ePrivacy Directive, essential cookies do not require consent.
We send email to you for one purpose: license key delivery. This email is sent from [email protected] via Resend immediately after purchase.
We do not send marketing emails. We do not currently operate a newsletter or mailing list. If we add one in the future, it will be strictly opt-in — we will never add you to a marketing list based on your purchase.
If you contact us at [email protected], we will use your email to respond. We will not add you to any list as a result.
The license database is a SQLite database on our payment server (Fly.io), not a cloud database service. Access is restricted to the payment server process. All connections to the Website and payment server are encrypted via TLS. Payment data is handled entirely by the payment processor — we never receive, process, or store credit card numbers or bank account details.
No system is perfectly secure. We take reasonable measures to protect the data we hold, but we cannot guarantee absolute security.
You can request a copy of all data we hold about you, or request that we delete it, by emailing [email protected] from the email address associated with your purchase. We will respond within 30 days.
If you request deletion, we will delete your license database record. This will invalidate your license key — we cannot delete your record while keeping your license active, because the record is the license. We will confirm deletion in writing.
We cannot delete data held by third-party payment processors (Stripe, PayPal, etc.) on your behalf. You should contact them directly using the links in Section 6.
If you are a California resident, the California Consumer Privacy Act (CCPA) grants you additional rights:
To exercise any of these rights, email [email protected] with the subject line "CCPA Request." We will verify your identity by confirming details of your purchase and respond within 45 days.
In the 12 months preceding this policy's effective date, the categories of personal information we collected are: identifiers (email address) and commercial information (purchase date, license tier). We did not collect biometric data, geolocation data, internet activity data, sensory data, professional data, education data, or inferences drawn from any of the above.
AirGapTax is not specifically targeted at residents of the European Union or European Economic Area. However, if you are located in the EU/EEA, we respect your rights under the General Data Protection Regulation (GDPR):
Data is stored on servers in the United States (Fly.io, Cloudflare). By purchasing a license, you acknowledge that your data will be transferred to and processed in the United States. We do not currently rely on Standard Contractual Clauses or other EU-approved transfer mechanisms, as we do not actively target EU residents.
To exercise any GDPR right, email [email protected] with the subject line "GDPR Request." We will respond within 30 days.
AirGapTax is tax computation software intended for adults who prepare their own tax returns. We do not knowingly collect personal information from children under the age of 13 (or under the age of 16 in the EU/EEA). If we learn that we have inadvertently collected data from a child, we will delete it promptly. If you believe a child has provided us with personal information, please contact us at [email protected].
In the event of a data breach affecting your personal information, we will:
Given the limited data we hold (email, license key, tier, session ID, purchase date), a breach of our license database would not expose tax data, financial data, or payment card information — because we don't have any of that.
We do not track you in the first place, so there is no behavioral change when your browser sends a Do Not Track signal. The result is the same either way: no tracking.
We may update this Privacy Policy from time to time. When we do, we will update the "Effective" date at the top of this page. If we make material changes — particularly any change that expands data collection or introduces new third-party data sharing — we will make reasonable efforts to notify existing license holders by email before the change takes effect.
Your continued use of the Software or Website after the updated policy takes effect constitutes your acceptance of the changes. If you do not agree with a change, your remedy is to stop using the Website; the desktop Software will continue to function offline regardless.
Last updated: 2026-05-27