Privacy Policy

Last updated: 25 July 2025

1. Introduction

Levytics ("we", "our", or "us") is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, and protect your information when you use our VAT calculation services.

This policy complies with the General Data Protection Regulation (GDPR) and other applicable data protection laws. By using our services, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Personal Data

We collect minimal personal data to provide our services:

  • Email Address: Required for account registration and service communication
  • Account Information: Basic account details for service delivery

2.2 VAT Number Validation

When you use our VAT validation service, we process VAT numbers for validation purposes:

  • UK VAT Numbers: Validated against the HMRC VAT validation API
  • EU VAT Numbers: Validated against the EU VIES (VAT Information Exchange System)
  • No Personal Data: VAT numbers are business identifiers and do not contain personal information

Important: We do not transmit any personal data to third-party validation services. Only VAT numbers (business identifiers) are sent for validation purposes.

3. How We Use Your Information

We use your information for the following purposes:

  • Provide and maintain our VAT calculation services
  • Process VAT number validations
  • Send service-related communications
  • Improve our services and user experience
  • Comply with legal obligations

4. Data Sharing and Third Parties

We do not sell, rent, or share your personal data with third parties for marketing purposes.

We may share data only in the following limited circumstances:

  • VAT Validation Services: VAT numbers (business identifiers) are sent to official validation APIs (HMRC, EU VIES) for validation purposes only
  • Legal Requirements: When required by law or to protect our rights and safety
  • Service Providers: With trusted service providers who assist in operating our services (e.g., hosting, analytics)

5. Data Security

We implement appropriate technical and organizational measures to protect your data:

  • Encryption of data in transit and at rest
  • Secure API authentication and authorization
  • Regular security assessments and updates
  • Limited access to personal data on a need-to-know basis

6. Your Rights Under GDPR

Under GDPR, you have the following rights regarding your personal data:

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Request limitation of data processing
  • Right to Data Portability: Receive your data in a structured format
  • Right to Object: Object to processing of your personal data

To exercise these rights, please contact us at [email protected]

7. Data Retention

We retain your personal data only for as long as necessary to provide our services:

  • Account Data: Retained while your account is active
  • VAT Validation Logs: Retained for 12 months for service improvement and compliance
  • Communication Records: Retained for 24 months for customer support

8. Cookies and Tracking

We use essential cookies to provide our services. We do not use tracking cookies or third-party analytics that collect personal data.

9. International Data Transfers

Our services are hosted in the European Economic Area (EEA). Any data transfers outside the EEA are conducted in compliance with GDPR requirements and appropriate safeguards.

10. Children's Privacy

Our services are not intended for children under 16. We do not knowingly collect personal data from children under 16.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

12. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: [email protected]

Data Protection Officer: [email protected]

Address: [Your Business Address]

13. Supervisory Authority

You have the right to lodge a complaint with your local data protection supervisory authority if you believe we have not addressed your concerns adequately.

Questions About Your Privacy?

We're committed to transparency and protecting your data. If you have any questions about how we handle your information, don't hesitate to reach out.

Contact Our Privacy Team