1. Overview & Scope
This Privacy Policy covers the Net Worth Nexus marketing website (networth.nexus), the web application (app.networth.nexus), the iOS application, and the backend services behind them (together, the “Service”). It describes what we collect, why, who processes it, how long we keep it, and the choices you have. It is incorporated into our Terms of Service.
Net Worth Nexus is subscription-funded. You are the customer — your data is not the product.
2. Information We Collect
2.1 Account & identity
- Email address, username, full name, and a hashed password (we never store or can recover the plain text).
- Consent records: which Terms/Privacy versions you accepted and when.
- Role and entitlement flags (plan tier, admin status) and account timestamps.
2.2 Profile & preferences (some optional)
- Birth year (required — age gate), and optionally gender, U.S. state, and life-phase details if you enable the peer-comparison feature.
- Settings: theme, navigation order, session-timeout length, notification and product-update opt-ins.
2.3 Financial data you add or connect
- Manual entries: accounts, balances, tracked tickers, option contracts, and sports bets you type in yourself.
- Connected brokerage data (Pro, via SnapTrade): read-only account, balance, holding, option, and transaction records.
- Connected banking data (Nexus, via Quiltt/Finicity, enriched by FinGoal): read-only account, balance, and transaction records with merchant metadata.
- Derived records: daily net-worth snapshots and computed analytics that power your history and insights.
2.4 Billing metadata
- Subscription status and identifiers from Stripe (web) or Apple (iOS). Card numbers are handled entirely by Stripe/Apple and never touch our servers.
2.5 Support & communications
- Messages you send to the website support assistant, support tickets you submit (email, category, platform, description), emails to support, and mailing-list signups.
2.6 Operational data
- Limited technical logs (request metadata, IP-based rate-limit counters, device push tokens if you opt into notifications, session records) used for security and reliability.
3. What We Never Collect
- Your institution credentials. Bank and brokerage logins are entered in SnapTrade’s or Quiltt’s own secure flows — they never pass through or rest in our systems.
- Card numbers. Payment details live with Stripe and Apple.
- Advertising identifiers. The Service contains no ad networks or advertising trackers.
- Biometric data. Face ID/Touch ID runs entirely on your device; we only receive the yes/no unlock result.
4. How We Use Information
- To run the product: aggregate your accounts, compute net worth, history, analytics, and simulations (heavy math runs once, server-side, so web and iOS agree).
- To personalize: apply your theme, navigation, onboarding answers, and opt-in peer comparison.
- To generate your Daily Briefing and answer support questions (see Section 5).
- To operate billing through Stripe/Apple and keep entitlements in sync.
- To secure the Service: session management, rate limiting, abuse and fraud prevention.
- To communicate: transactional messages, support replies, the optional daily notification, and product updates if you opted in.
- To comply with law and enforce our Terms.
We do not use your personal data for third-party advertising, and we do not sell it.
5. AI Processing
- Daily Briefing (Pro/Nexus): each evening we send a factual, numeric snapshot of your portfolio (values, deltas, holdings — not your name or email) to Google Gemini, which returns one neutral observation.
- Support assistant: free-text questions you type in the website widget are processed by Google Gemini together with our public product documentation to compose an answer. Don’t include passwords, full account numbers, or other sensitive details in chat messages.
- AI output is informational only and can be wrong; it is never financial advice, and human support remains available at [email protected].
6. Service Providers (Processors)
We share data only with the providers that make the Service work, each limited to its role:
- SnapTrade — brokerage aggregation (read-only account/holding/transaction data; SOC-2 certified).
- Quiltt with Finicity connectivity and FinGoal enrichment — banking aggregation and merchant metadata (SOC-2 certified providers).
- Stripe — web payments and subscription management.
- Apple — iOS in-app purchases, transaction verification, and push notification delivery (APNs).
- Google (Gemini API) — AI generation described in Section 5.
- Railway and similar cloud infrastructure — application hosting, databases, and caching (including Redis session storage).
Public data shown in Markets (FRED, SEC EDGAR, press feeds) flows to you — no personal data is sent to those sources. Providers process data under their own security and privacy obligations; certifications such as SOC-2 belong to those providers, and we don’t claim them for Net Worth Nexus itself.
8. Data Retention
- Sessions: expire per your configured timeout (15 minutes to 24 hours; default 1 hour).
- Connection webhook payloads: raw bodies pruned after about 60 days; event metadata kept about 365 days for diagnostics.
- Financial records, snapshots, transactions, manual entries, settings: retained while your account exists — they are your history.
- Support tickets and assistant conversations: retained as long as needed to resolve issues and improve support quality.
- Account deletion (Settings → Danger Zone) purges your connections, transactions, snapshots, settings, and manual data from production systems; residual copies in encrypted backups age out on backup rotation. Some records may be retained where the law requires (for example, billing records).
9. Security
- Passwords hashed with PBKDF2-HMAC-SHA256 and per-user salts.
- Connection secrets encrypted at rest (Fernet symmetric encryption with a server-managed key).
- HTTP-only, SameSite session cookies; login rate limiting; configurable session expiry.
- Transport encryption (TLS) everywhere; HSTS, frame denial, content-type protection, and restrictive referrer/permissions policies enforced.
- Read-only data model: no credentials to steal, no money-movement capability to abuse.
- On iOS, biometric-login credentials are stored only in the device Keychain, accessible only when the device is unlocked.
No system is perfectly secure; if we learn of a breach affecting your personal data we will notify you as required by law. Report suspected vulnerabilities to [email protected] — responsible disclosure is appreciated.
10. Your Rights & Choices
- Access & correction: view and edit your profile, preferences, and manual data in Settings.
- Deletion: self-service account deletion in Settings (type DELETE to confirm). It is blocked while a paid subscription is active — cancel first. You can also request deletion by email.
- Export: a self-service data export is on the roadmap; until it ships, email [email protected] and we will fulfill export requests manually.
- Disconnecting accounts: remove any brokerage or banking connection in Settings → Connections at any time.
- Opt-outs: product-update emails, the daily push notification, and the peer-comparison feature are all off-by-default or toggleable in Settings.
11. U.S. State Privacy Rights
Depending on your state (including California, Colorado, Connecticut, Texas, Utah, and Virginia), you may have statutory rights to know/access, correct, delete, and port personal information, and to opt out of sales, sharing for cross-context behavioral advertising, and certain profiling.
- We do not sell personal information and do not share it for cross-context behavioral advertising — so there is nothing to opt out of on that front.
- Exercise any right via [email protected]; we will verify the request against your account email and respond within the statutory window.
- We will never discriminate against you for exercising privacy rights.
- California residents: the categories collected are described in Section 2 (identifiers, financial information, preferences, internet activity limited to operational logs); sources and purposes are Sections 2 and 4; disclosures for business purposes are Section 6. We do not use or disclose sensitive personal information beyond what is necessary to provide the Service.
12. Children
The Service is not directed to children under 13, and registration enforces a minimum age of 13 with a birth-year gate. We do not knowingly collect personal information from children under 13; if we learn we have, we will delete it. Parents or guardians who believe a child has an account can contact [email protected].
13. International Users
The Service is operated from the United States and data is processed and stored on U.S. infrastructure. If you use the Service from outside the U.S., you understand your information is transferred to and processed in the United States, where privacy laws may differ from your jurisdiction’s.
15. Changes to This Policy
We will update this policy as the product evolves — including a finalized, attorney-reviewed version before public launch. Material changes get reasonable notice (on this page with a new effective date, in-app, or by email). The version you consented to at registration is recorded with your account.
16. Contact
Privacy questions, requests, and complaints: [email protected]
NexTech Innovations LLC — operator of Net Worth Nexus.