Privacy Policy

Effective: 2026-05-10

What we collect

Account information (email address) so we can send magic-link sign-in links and transactional emails. Scenario inputs (the site, financial, and tax assumptions you enter in the wizard) so the engine can produce the metrics and report. Stripe payment metadata (last 4 digits, card brand, billing zip) returned by Stripe; we never receive or store full card numbers. Server logs (IP address, user agent, request paths) for security and abuse detection.

What we don't collect

No social-security numbers, no bank account numbers, no investment balances, no tax returns, no third-party tracking pixels in marketing emails. Analytics events are first-party only (PostHog).

Retention & deletion

Scenarios and reports remain in your account until you delete them. Personally identifiable information is purged within 7 days of an account-deletion request. Anonymized aggregates (used to power the Benchmarks page at k ≥ 5 per bucket) are retained indefinitely for product integrity.

Your rights

Under GDPR (EU) and CCPA (California), you can request a copy of your data, request correction, request deletion, or opt out of analytics. Email [email protected] with your request; we respond within 30 days.

Data sale & sharing

We do not sell user data. Ever. Subprocessors we use to operate the service: Stripe (payments), Cloudflare (DNS/edge), AWS S3 (PDF storage), Render (hosting), Anthropic (AI Analyst — Pro tier only, scenario JSON sent at chat time), ZeptoMail (transactional email), PostHog (first-party product analytics), Sentry (error tracking).

Contact

Privacy questions: [email protected]