Skip to main content
EZFile is designed with privacy as a core principle. All tax data processing happens locally on your machine, and multiple security layers prevent accidental data exposure.

Core Privacy Principles

Local Processing

All calculations happen on your machine. Tax data never leaves your computer.

SSN Masking

Full SSNs are never stored or displayed. Only the last 4 digits are shown.

Network Blocking

Security hooks prevent network commands from running with tax data.

Output Validation

Written files are scanned for accidentally exposed sensitive information.

SSN Handling

EZFile takes special care with Social Security Numbers:

How SSNs Are Protected

1

Extraction

When reading your W-2, EZFile extracts only the last 4 digits
2

Masking

SSN is always displayed as XXX-XX-NNNN where NNNN is the last 4 digits
3

Storage

Full SSNs are NEVER stored in any file created by EZFile
4

Validation

If a full SSN accidentally appears in output, the validation hook blocks it
Important: When you file at Free File Fillable Forms, you WILL need to enter your full SSN. EZFile masks it for privacy during calculation, but the IRS requires your real SSN to process your return.

If You Need Your Full SSN

Your full SSN is on your original W-2 (Box a). EZFile will refuse if you ask it to display your full SSN: 
User: Show me my full SSN
EZFile: I cannot display your full SSN. For privacy, EZFile only stores 
        and displays the last 4 digits (XXX-XX-NNNN). Your full SSN is 
        on your original W-2 document in Box a.

Security Hooks

EZFile uses three security hooks to prevent data leaks:

1. Network Blocking Hook

Trigger: Before any Bash command runsPurpose: Prevents network-related commands from executingBlocked Commands:
  • curl, wget, fetch, http
  • ssh, scp, sftp, rsync
  • nc, netcat, telnet, ftp
  • aws, gcloud, az (cloud CLIs)
  • git push, docker push, npm publish
  • pip install (with network)
  • Python/Node scripts with network libraries
Example:
# This command is blocked:
curl -X POST https://example.com/upload -d @return-2025.json

# Error message:
EZFile: Network commands are blocked. Tax data must never leave 
your local machine. Blocked pattern: \bcurl\b
Why: Tax data must NEVER be transmitted over the network

2. PII Search Blocking Hook

Trigger: Before any web search or fetchPurpose: Prevents SSNs and other PII from appearing in web searchesBlocked Patterns:
  • SSN format: ###-##-####
  • SSN without dashes: 9 consecutive digits
  • EIN format: ##-#######
  • Keywords: “SSN”, “social security number”
  • Bank account numbers (8-17 digits)
Example:
# This search is blocked:
WebSearch: "tax rules for SSN 123-45-6789"

# Error message:
EZFile: Blocked web request containing Social Security Number. 
Tax-related personal information must never be sent over the network.
Detected: '123-45-6789'
Why: Even masked, sensitive patterns should never be transmitted

3. Output Validation Hook

Trigger: After writing or editing any filePurpose: Scans written files for accidentally exposed SSNs and validates tax mathChecks:
  1. Full SSN Detection: Blocks ###-##-#### patterns (unless masked as XXX-XX-####)
  2. 9-Digit Numbers: Warns about unformatted potential SSNs
  3. Tax Math Invariants:
    • Taxable income = AGI - deductions
    • Refund = payments - total_tax
    • Tax ≥ 0 (never negative)
    • Taxable income ≥ 0
Example:
# If a full SSN appears in a file:
EZFile Validation: FULL SSN DETECTED: '123-45-6789' -- 
Must be masked to XXX-XX-NNNN format

CRITICAL: Full SSN found in output file. The file must be 
corrected to mask SSN as XXX-XX-NNNN.

# The write operation is blocked
Why: Provides a last line of defense against accidental exposure

Local-Only Processing

EZFile guarantees that all processing happens locally:

What Happens Locally

1

W-2 Reading

PDF/image parsing happens on your machine using local libraries
2

Tax Calculations

All math (brackets, credits, deductions) computed locally
3

File Writing

Return summaries and JSON files written to ./returns/ on your machine
4

No Cloud Services

No API calls, no cloud uploads, no remote storage

What NEVER Happens

  • Your W-2 is never uploaded anywhere
  • Your SSN never leaves your machine
  • Your return data never touches a server
  • EZFile does not “phone home” with your information

File Storage

EZFile stores return data in a gitignored directory: 
./returns/
├── summary-2025.md          # Human-readable summary
└── return-2025.json          # Machine-readable data

Security Best Practices

After Filing

Consider deleting return files after successfully filing

Backup

If keeping files, store on encrypted backup (not cloud)

Git

The returns/ directory is gitignored — don’t commit it

Sharing

If sharing return data with a CPA, do so securely (encrypted email, password-protected)

Common Security Questions

EZFile will block attempts to email or upload your return automatically. If you need to share your return:
  1. Manually attach return-2025.json or summary-2025.md to an email
  2. Use encrypted email if possible
  3. Or password-protect the file before sending
EZFile cannot do this for you to prevent accidental transmission.
The security hook will deny the command before it executes:
EZFile: Network commands are blocked. Tax data must never 
leave your local machine.
Your data is safe — the command never ran.
Yes, but remember:
  • Your employer may have access to files on work machines
  • Consider using your personal computer for sensitive tax data
  • If using a work machine, delete return files after filing
If you use automatic cloud backup (Dropbox, Google Drive, iCloud):
  • The returns/ directory may sync automatically
  • Consider excluding returns/ from cloud sync
  • Or move return files to a non-synced location
EZFile reads the W-2 you provide but does not make a copy. The original PDF/image remains where you stored it. You control whether to keep or delete it.

Hook Configuration

The security hooks are configured in hooks/hooks.json: 
{
  "hooks": {
    "PreToolUse": [
      {
        "matcher": "Bash",
        "hooks": [{"type": "command", "command": "python3 hooks/block_network.py"}]
      },
      {
        "matcher": "WebSearch|WebFetch",
        "hooks": [{"type": "command", "command": "python3 hooks/block_pii_search.py"}]
      }
    ],
    "PostToolUse": [
      {
        "matcher": "Write|Edit",
        "hooks": [{"type": "command", "command": "python3 hooks/validate_output.py"}]
      }
    ]
  }
}
These hooks run automatically — you don’t need to configure or enable them.

Privacy Guarantees

EZFile makes these guarantees:

No Network Transmission

Tax data never leaves your local machine

SSN Masking

Full SSNs never stored or displayed

No Logging

No logs sent to external services

Open Source

All code is open source — you can verify these claims yourself

What You’re Responsible For

While EZFile protects your data during calculation, you are responsible for:
  • Securing your original W-2 documents
  • Choosing whether to keep or delete return files
  • Protecting your computer with passwords, encryption, etc.
  • Entering your SSN correctly at Free File Fillable Forms
  • Handling filed returns securely after submission

Disclaimer

EZFile is a tax calculation assistant, not a licensed tax preparer or security service. While we take extensive measures to protect your privacy, you are responsible for securing your tax documents and data.

Build docs developers (and LLMs) love

Get started for freeTalk to us