Privacy Policy
1. Who This Applies To
This Privacy Policy applies to all users of 5330Prep, including visitors, guest users (no account), and registered account holders. By using 5330Prep, you agree to the collection and use of information as described here.
2. What We Collect
| Data type | Examples | Why we collect it |
|---|---|---|
| Identity / contact | Email address (if you log in) | Account authentication via magic link |
| Tax identifiers | Filer SSN, filer EIN, sponsor EIN | Required to populate IRS Form 5330 |
| Plan information | Plan name, plan number, plan year, filer address | Required to populate IRS Form 5330 |
| Financial data | Contribution amounts, transaction dates, excise tax amounts | Required to calculate and populate Form 5330 |
| Usage data | Server logs, IP address, browser type | Security, debugging, uptime monitoring |
3. How We Store and Protect Your Data
All form data — including SSNs, EINs, and financial figures — is encrypted at rest using AES-128 symmetric encryption (Fernet/cryptography library) before being written to our database. The encryption key is stored separately from the data as a secure environment variable on our hosting infrastructure.
We do not store the generated PDF itself. PDFs are generated on demand and sent directly to your browser. The underlying form data used to regenerate a PDF is encrypted in our database.
Data in transit is protected by TLS (HTTPS). We do not transmit your SSN or EIN to any third party except as required to generate your PDF on your own device.
4. How Long We Keep Your Data
- Guest filings (no account): automatically deleted after 30 days
- Account filings: retained until you delete them individually or delete your account
- Email addresses: retained until you delete your account
- Server logs: retained for up to 90 days for security purposes
5. Your Rights and Controls
You have full control over your data:
- Delete individual filings — from your dashboard, click "Delete" next to any filing
- Delete your account — from your dashboard, use "Delete My Account & All Data" to permanently remove your account and all filings
- No account needed — you can prepare and download a Form 5330 without creating an account at all
6. Who We Share Data With
We do not sell, rent, or share your personal data or tax information with third parties for marketing or advertising purposes. Period.
We use the following infrastructure providers who may process data on our behalf:
- Render (render.com) — cloud hosting and database. Data is stored on their infrastructure in the United States.
- SendGrid / email provider — used only to send magic login links to your email address. We do not share form data with email providers.
We may disclose data if required by law, court order, or to protect the rights and safety of our users or the public.
7. Cookies and Tracking
We use a session cookie to keep you logged in. We do not use third-party advertising cookies, tracking pixels, or analytics that share your data with third parties. We do not use Google Analytics or similar services.
8. Children's Privacy
5330Prep is intended for use by employers, plan administrators, and tax professionals. We do not knowingly collect personal information from anyone under 18.
9. Changes to This Policy
We may update this policy as our practices evolve. We will update the effective date at the top of this page when we do. Material changes will be communicated to registered users via email.
10. Contact
Questions about your data or this policy? Contact us at hello@5330prep.com.
To request deletion of your data without logging in, email us from the address associated with your account.