Privacy Policy

1. Introduction

WealthMatrix ("we", "us", or "our") operates FinTwin, a financial information and portfolio management platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

We take your privacy seriously. By using FinTwin, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Account Information

• Email address
• Name (via OAuth providers like Google, Apple)
• Profile picture (if provided by OAuth)
• Account creation date

2.2 Financial Data

• Portfolio holdings (stocks, mutual funds, ETFs)
• Insurance policies and coverage details
• Loan and liability information
• Real estate and other asset data
• Transaction history and cost basis

2.3 Usage Data

• Chat messages and conversation history
• Files uploaded (CSV, PDF, screenshots)
• Feature usage patterns
• Device and browser information
• IP address and location data

3. How We Use Your Information

We use your information to:

• Provide and maintain the Service
• Process your portfolio data and generate insights
• Power our AI chat assistant with your financial context
• Send notifications about policy renewals and rebalancing
• Improve our algorithms and features
• Enforce usage limits based on subscription tier
• Communicate updates, security alerts, and support messages
• Prevent fraud and ensure platform security

4. AI and Data Processing

Your financial data is processed by AI models to provide personalized insights.

• We use AWS Bedrock (Claude 3.5 Sonnet) for AI processing
• Chat conversations are analyzed to understand your financial queries
• Portfolio data is used to generate insights and recommendations
• AI models do not store your data permanently; AWS Bedrock does not use your data to train their models
• All AI processing happens securely in cloud infrastructure

5. Data Storage and Security

5.1 Where We Store Data

• User data is stored in Supabase (PostgreSQL database)
• Files are stored in Supabase Storage with encryption
• Data is hosted in secure cloud infrastructure

5.2 Security Measures

• End-to-end encryption for data in transit (HTTPS/TLS)
• Encryption at rest for stored data
• Row-level security policies in database
• Regular security audits and updates
• OAuth 2.0 authentication via trusted providers
• No storage of plain-text passwords

Note: While we implement industry-standard security measures, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

6. Data Sharing and Disclosure

6.1 We DO NOT Sell Your Data

We do not sell, rent, or trade your personal financial data to third parties for marketing purposes.

6.2 We Share Data With:

• Service Providers: AWS (Bedrock AI), Supabase (database), Vercel (hosting)
• Payment Processors: To process subscription payments (if applicable)
• Analytics: Aggregated, anonymized data for product improvement
• Legal Requirements: When required by law or to protect our rights

6.3 Family Sharing

If you use the C-Suite plan, certain data (like insurance vault) may be shared with family members you explicitly authorize. You control who has access.

7. Your Data Rights

You have the right to:

• Access: Request a copy of your data
• Correction: Update inaccurate or incomplete data
• Deletion: Request deletion of your account and data
• Export: Download your portfolio data in portable format
• Opt-out: Unsubscribe from marketing emails
• Withdraw Consent: Stop using the Service at any time

To exercise these rights, contact us at contact@wealthmatrix.ai

8. Data Retention

• We retain your data as long as your account is active
• After account deletion, data is permanently removed within 90 days
• Some data may be retained for legal or compliance purposes
• Chat conversations are stored to maintain context and history
• Uploaded files are retained to avoid re-parsing

9. Cookies and Tracking

We use cookies and similar technologies to:

• Maintain your login session
• Remember your preferences
• Analyze usage patterns (aggregated data)
• Improve performance and user experience

You can control cookies through your browser settings, but this may limit functionality.

10. Third-Party Services

We integrate with third-party services:

• OAuth Providers: Google, Apple (for authentication)
• Market Data: mfapi.in, yfinance (public market data)
• News: NewsAPI (macro events)

These services have their own privacy policies. We are not responsible for their practices.

11. Children's Privacy

FinTwin is not intended for users under 18 years of age. We do not knowingly collect data from children. If you are a parent and believe your child has provided us with information, please contact us.

12. International Users

FinTwin is designed for users globally. By using the Service:

• Your data may be transferred to and processed in countries outside your jurisdiction
• We comply with applicable data protection laws
• For EU users: We implement GDPR-compliant practices
• For India users: We comply with DPDP Act 2023 (when enacted)

13. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. Continued use of the Service after changes constitutes acceptance.

14. Contact Us

If you have questions about this Privacy Policy or how we handle your data, contact us at:

Email: contact@wealthmatrix.ai
Address: WealthMatrix