Privacy Policy
Effective: 2026-05-10
What we collect
Account information (email address) so we can send magic-link sign-in links and transactional emails. Scenario inputs (the site, financial, and tax assumptions you enter in the wizard) so the engine can produce the metrics and report. Stripe payment metadata (last 4 digits, card brand, billing zip) returned by Stripe; we never receive or store full card numbers. Server logs (IP address, user agent, request paths) for security and abuse detection.
What we don't collect
No social-security numbers, no bank account numbers, no investment balances, no tax returns, no third-party tracking pixels in marketing emails. Analytics events are first-party only (PostHog).
Retention & deletion
Scenarios and reports remain in your account until you delete them. Personally identifiable information is purged within 7 days of an account-deletion request. Anonymized aggregates (used to power the Benchmarks page at k ≥ 5 per bucket) are retained indefinitely for product integrity.
Your rights
Under GDPR (EU) and CCPA (California), you can request a copy of your data, request correction, request deletion, or opt out of analytics. Email [email protected] with your request; we respond within 30 days.
Data sale & sharing
We do not sell user data. Ever. Subprocessors we use to operate the service: Stripe (payments), Cloudflare (DNS/edge), AWS S3 (PDF storage), Render (hosting), Anthropic (AI Analyst — Pro tier only, scenario JSON sent at chat time), ZeptoMail (transactional email), PostHog (first-party product analytics), Sentry (error tracking).
Contact
Privacy questions: [email protected]