Skip to main content
EU VAT Info
Home Calculator Map

Privacy Policy

Last updated: April 10, 2025

1. Introduction

EU VAT Info ("we", "us", or "our") operates the website eu-vat.info and the EU VAT Info mobile applications for iOS and Android (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.

2. Information We Collect

2.1 Information You Provide

  • VAT Numbers: When you use our VAT number validation tool, you submit VAT numbers for verification against the EU VIES system. We cache validation results temporarily to improve performance.
  • Calculator Inputs: Amounts and VAT rates you enter into our calculator tools are processed locally and are not stored on our servers.
  • Contact Information: If you contact us via email, we collect your email address and message content to respond to your inquiry.

2.2 Information Collected Automatically

  • Usage Data: We collect anonymized analytics data including pages visited, features used, country selections, and interaction patterns to improve our Service.
  • Device Information: Browser type, operating system, device type, and screen resolution.
  • IP Address: Used for approximate geolocation (country-level) to provide localized content and for security purposes. IP addresses are not stored long-term.
  • Cookies: We use essential cookies for session management and language preferences. No third-party tracking cookies are used.

2.3 Mobile App Specific Data

  • Device Identifiers: Anonymous device identifiers for crash reporting and analytics.
  • App Usage: Feature usage patterns, screen views, and interaction data to improve the app experience.
  • Network Information: Connection type (Wi-Fi/cellular) to optimize data loading.
  • No Location Data: Our mobile apps do not access your precise GPS location.
  • No Camera or Microphone: Our apps do not access your camera or microphone.
  • No Contacts or Phone Data: Our apps do not access your contacts, call logs, or phone data.

3. How We Use Your Information

We use the collected information for the following purposes:

  • Providing and maintaining the Service, including VAT rate information, calculators, and validation tools
  • Improving and optimizing the Service based on usage patterns
  • Providing localized content in your preferred language
  • Caching VAT validation results to reduce load on the EU VIES system and improve response times
  • Detecting and preventing abuse or unauthorized use of our API
  • Responding to your inquiries and support requests
  • Generating aggregated, anonymized statistics about VAT rates and usage trends

4. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share information in the following limited circumstances:

  • VIES Validation: VAT numbers submitted for validation are forwarded to the European Commission's VIES service, which is operated by the EU. This is necessary to provide the validation functionality.
  • Hosting Providers: Our Service is hosted on infrastructure provided by third-party hosting services that may process data on our behalf under strict data processing agreements.
  • Legal Requirements: We may disclose information if required by law, regulation, or legal process.

5. Data Retention

  • VAT Validation Cache: Cached validation results are retained for up to 24 hours to optimize performance.
  • Analytics Data: Anonymized usage statistics are retained for up to 12 months.
  • Contact Inquiries: Email correspondence is retained for as long as necessary to resolve your inquiry, up to a maximum of 24 months.

6. Data Security

We implement appropriate technical and organizational measures to protect your information, including:

  • HTTPS/TLS encryption for all data in transit
  • Regular security updates and vulnerability assessments
  • Access controls and authentication for administrative systems
  • Encrypted database connections

While we strive to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

7. Your Rights

Under the General Data Protection Regulation (GDPR) and applicable data protection laws, you have the following rights:

  • Right of Access: Request a copy of the personal data we hold about you.
  • Right to Rectification: Request correction of inaccurate personal data.
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten").
  • Right to Restrict Processing: Request that we limit how we use your data.
  • Right to Data Portability: Request your data in a structured, machine-readable format.
  • Right to Object: Object to processing of your personal data for certain purposes.

To exercise any of these rights, please contact us at privacy@businesspress.io. We will respond to your request within 30 days.

8. Cookies

Our website uses the following types of cookies:

  • Essential Cookies: Required for the Service to function (session management, CSRF protection, language preferences).
  • Performance Cookies: Anonymized analytics to understand how visitors use our site and improve the experience.

We do not use advertising or third-party tracking cookies. You can control cookies through your browser settings.

9. Third-Party Services

Our Service integrates with the following third parties:

  • European Commission VIES: For VAT number validation. Subject to the EU legal notice.
  • DeepL: For automated translation of interface elements. No personal data is shared with DeepL.

10. Children's Privacy

Our Service is not directed to children under the age of 16. We do not knowingly collect personal information from children. If you believe we have collected data from a child, please contact us and we will promptly delete it.

11. International Data Transfers

Our Service is primarily operated within the European Union. If data is transferred outside the EU/EEA, we ensure appropriate safeguards are in place in compliance with GDPR, such as Standard Contractual Clauses.

12. API Usage

If you use our public API, we log API requests including your API key (if applicable), IP address, and request parameters for rate limiting, abuse prevention, and service improvement. API logs are retained for up to 30 days.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. We encourage you to review this policy periodically. Continued use of the Service after changes constitutes acceptance of the updated policy.

14. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us: