Privacy Policy

1. Introduction

Stratum ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our tax planning software platform (the "Service").

By accessing or using our Service, you agree to this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access the Service.

2. Information We Collect

2.1 Information You Provide

We collect information that you provide directly to us, including:

• Account Information: Name, email address, password, and firm information
• Client Data: Tax information, financial data, and planning scenarios you enter into the Service
• Payment Information: Billing details and payment card information (processed securely through third-party payment processors)
• Communications: Information you provide when contacting our support team

2.2 Information Collected Automatically

When you access our Service, we automatically collect:

• Usage Data: Pages viewed, features used, time spent on pages, and click data
• Device Information: IP address, browser type, operating system, and device identifiers
• Cookies and Similar Technologies: We use cookies, web beacons, and similar tracking technologies to collect information about your browsing activities

2.3 Information from Third Parties

We may receive information from third-party services you connect to our platform, such as authentication providers or payment processors.

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our Service
• Process your transactions and manage your account
• Send you technical notices, updates, security alerts, and support messages
• Respond to your comments, questions, and customer service requests
• Communicate with you about products, services, offers, and events
• Monitor and analyze trends, usage, and activities in connection with our Service
• Detect, investigate, and prevent fraudulent transactions and other illegal activities
• Personalize and improve your experience with our Service
• Comply with legal obligations and enforce our terms and policies

4. How We Share Your Information

We may share your information in the following circumstances:

4.1 Service Providers

We may share your information with third-party vendors, consultants, and service providers who perform services on our behalf, such as payment processing, data analysis, email delivery, hosting services, and customer service.

4.2 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).

4.3 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your information is transferred and becomes subject to a different Privacy Policy.

4.4 With Your Consent

We may share your information with third parties when we have your consent to do so.

5. Data Security

We implement appropriate technical and organizational security measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments and testing
• Access controls and authentication mechanisms
• Employee training on data protection and security

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.

6. Data Retention

We retain your information for as long as necessary to provide you with our Service, comply with legal obligations, resolve disputes, and enforce our agreements. When you cancel your account, we will retain your data for 30 days to allow you to reactivate your account if you change your mind. After this period, we will delete or anonymize your information, except where we are required to retain it for legal or regulatory purposes.

7. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

• Access: You can request access to the personal information we hold about you
• Correction: You can request that we correct inaccurate or incomplete information
• Deletion: You can request deletion of your personal information
• Data Portability: You can request a copy of your data in a structured, machine-readable format
• Opt-Out: You can opt out of marketing communications at any time
• Restrict Processing: You can request that we restrict the processing of your information

To exercise these rights, please contact us at support@swifton.com. We will respond to your request within 30 days.

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our Service and hold certain information. Cookies are files with a small amount of data that may include an anonymous unique identifier.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service.

Examples of cookies we use:

• Session Cookies: We use session cookies to operate our Service
• Preference Cookies: We use preference cookies to remember your preferences and settings
• Security Cookies: We use security cookies for security purposes

9. Third-Party Services

Our Service may contain links to third-party websites or services that are not owned or controlled byStratum. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you visit.

10. Children's Privacy

Our Service is not intended for children under the age of 18. We do not knowingly collect personal information from children under 18. If you are a parent or guardian and believe your child has provided us with personal information, please contact us, and we will delete such information from our systems.

11. California Privacy Rights (CCPA)

If you are a California resident, you have specific rights regarding your personal information under the California Consumer Privacy Act (CCPA):

• The right to know what personal information we collect, use, disclose, and sell
• The right to request deletion of your personal information
• The right to opt-out of the sale of your personal information (we do not sell personal information)
• The right to non-discrimination for exercising your privacy rights

To exercise these rights, please contact us at support@swifton.com.

12. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), you have certain rights under the General Data Protection Regulation (GDPR):

• The right to access, update, or delete your personal information
• The right to rectification if your information is inaccurate or incomplete
• The right to object to our processing of your personal information
• The right to request restriction of processing of your personal information
• The right to data portability
• The right to withdraw consent at any time

We process your personal information based on legitimate interests, contractual necessity, or your consent. To exercise your GDPR rights, please contact us at support@swifton.com.

13. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.