Privacy Policy

Last updated: June 2026

1. What we collect

Account data (email, name, authentication identifiers); your risk-profile answers; read-only financial data you choose to sync via Plaid (institutions, balances, holdings); notification preferences and device push tokens; product usage events; and billing status from Stripe. We never receive your brokerage credentials or full card numbers.

2. How we use it

To operate the service: showing your portfolio, contextualizing published research against your holdings, sending the notifications you opt into, processing subscriptions, preventing abuse, and improving the product with aggregate analytics. We do not sell your personal data, and we do not share your holdings with advertisers or other users.

3. AI processing

Published ideas are generated from market data, not from your personal data. Portfolio-fit context shown to you (for example, sector gaps) is computed in our systems; where AI models assist, data is limited to what is necessary and is not used by us to train models.

4. Service providers

We rely on processors under contract: Supabase (database & auth), Plaid (account connectivity), Stripe (payments), market-data providers, AI model APIs (Anthropic, OpenAI, Google), email/SMS/push delivery vendors, and error/analytics tooling. Each receives only the data needed for its function.

5. Security

Data is encrypted in transit and at rest. Plaid access tokens are additionally encrypted at the application layer and are never exposed to your browser. Access to production data is restricted and logged.

6. Retention & deletion

We keep data while your account is active. Disconnecting Plaid stops syncing and lets you delete synced financial data immediately; deleting your account removes personal data within 30 days except records we must keep for legal, tax, or fraud-prevention purposes.

7. Your rights

Depending on where you live (e.g., CCPA), you may request access, correction, deletion, or a copy of your data, and you may opt out of analytics. Use Settings → Privacy or email privacy@investmentai.app.

8. Changes

We'll notify you of material changes in-app or by email before they take effect. Continued use after the effective date constitutes acceptance.