Security model

Local processing as a security property

Because ErgoTax processes tax documents and produces forms locally during normal preparation, ErgoTax servers are not designed to hold your tax document content or return data.

This is not a marketing claim. It is a consequence of the architecture: no document content, extracted values, return fields, or generated forms are transmitted to ErgoTax servers during normal preparation.

What ErgoTax servers do and do not hold

ErgoTax servers serve:

• The application itself (HTML, JavaScript, WebAssembly bundles)
• Static assets
• Scrubbed crash reports (no tax content)

During normal preparation, ErgoTax servers are not designed to hold:

• Your tax documents
• Extracted field values
• In-progress returns
• Generated forms
• Social Security numbers or other PII you enter into the app

No third-party document transmission

During normal preparation, uploaded documents are not sent to OCR services, AI vendors, or third-party extraction systems. Processing is performed by a WebAssembly PDF library running in your browser.

Your local storage is your responsibility

Because data is stored locally, the security of that data depends on your device and browser. Use ErgoTax on a personal device with appropriate screen lock and browser security. Do not use ErgoTax on shared or public computers.

Export your project file to a secure location. Consider encrypting sensitive exports at rest.

Reporting a vulnerability

If you discover a security vulnerability in ErgoTax, please report it to:

[email protected]

Please include a clear description of the issue, the affected component, and steps to reproduce. Do not include sensitive personal information in your report.

We will acknowledge receipt promptly and work to address confirmed vulnerabilities. See the full vulnerability disclosure policy.