SelfSubmit is designed to help you stay compliant with HMRC Making Tax Digital requirements. You remain responsible for ensuring the information you submit is accurate.

← Home
Sign inSign up

Privacy policy

This policy describes how we process personal data when you use the SelfSubmit website. It should be read with our GDPR overview and cookie policy.

Last updated: 16 April 2026

1. Scope

This policy covers information processed through pages served from this site (including forms and any future authenticated areas). It does not govern how your accountant or HMRC processes data when you deal with them directly.

2. Data we may collect

  • Technical data: IP address, browser type, device identifiers, and logs needed for security and debugging (typically via hosting infrastructure).
  • Form and usage data: anything you type into demos (for example income figures) if transmitted to our servers—today many demos run client-side only; confirm your deployment.
  • Account data: when sign-in exists: name, email, hashed credentials, and preferences.
  • Support communications: content you send if you email support.

3. Purposes and lawful bases

We process data to operate the site, provide features you request, secure our services, comply with law, and improve the product. Lawful bases may include contract, legitimate interests, legal obligation, and consent where required (see our GDPR & data protection page).

4. Sharing

We may use processors (hosting, email, analytics) under written agreements requiring them to protect data. We do not sell personal data. We may disclose data if required by law or to protect rights and safety.

5. Retention

We keep data only as long as needed for the purposes above, then delete or anonymise it unless a longer period is required by law (for example tax record retention where we store business records on your behalf in a future product).

6. Security

We implement appropriate technical and organisational measures for the sensitivity of the data we handle. No method of transmission over the Internet is 100% secure.

7. Your rights

UK individuals have rights of access, rectification, erasure, restriction, objection, portability, and complaint to the ICO, subject to conditions. See the GDPR & data protection page and contact us via the route on our Contact page.

8. Children

This site is not directed at children under 16 and we do not knowingly collect their data.

9. International transfers

If personal data leaves the UK, we use appropriate safeguards as described in our GDPR page once applicable.

10. Changes

We will update this policy when our practices change and revise the “Last updated” date.