Security Architecture

Unlike traditional tax software, TaxReturnGPT does not profit from your data. We utilize Stateless Processing—once your analysis is complete and your report is generated, the underlying raw financial artifacts are purged from our active compute environment.

• Ephemeral Compute Analysis is performed in isolated Docker containers that are destroyed immediately upon task completion.
• Zero Data Selling Your financial DNA is never used for advertising, nor is it sold to third-party aggregators.

We employ the same cryptographic standards used by global financial institutions and government intelligence agencies.

• In-Transit All data transmitted between your device and our engines is protected by TLS 1.3 with Perfect Forward Secrecy.
• At-Rest Temporary artifacts are encrypted using AES-256 with Galois/Counter Mode (GCM), managed via AWS Key Management Service (KMS).

To prevent model poisoning or data leakage, our AI engines operate in a "Cold Room" environment. The models are pre-trained on public tax code and historical IRS publications but are disconnected from the public internet during your specific session analysis.

• No Model Training on User Data We do not use your private returns to train or fine-tune our global models. Your strategies remain yours.
• Deterministic Outputs Every recovery suggestion must be validated against a physical tax publication (e.g., Publication 17) before it is presented to you.