Legal

Privacy Policy

Last updated: April 1, 2025

WorthIQ, Inc. ("WorthIQ," "we," "us," or "our") operates the WorthIQ personal finance platform at worthiq.io. This Privacy Policy explains how we collect, use, disclose, and safeguard your information. By using WorthIQ, you agree to this policy.

1. Information We Collect

1.1 Information You Provide

  • Account information: Name, email address, and password (stored as a secure hash) when you register.
  • Profile data: Any optional preferences or settings you configure in the app.

1.2 Financial Data via Plaid

WorthIQ integrates with Plaid Technologies, Inc. to connect your financial accounts. When you link a bank or brokerage, Plaid handles authentication directly with your financial institution. Your banking credentials are never transmitted to or stored by WorthIQ.

Through Plaid, we receive and store: account names and balances, transaction history, account types and institutions, and investment holdings and transactions. This data is used solely to provide the WorthIQ service to you.

1.3 Usage Data

We may collect information about how you interact with our service, including pages visited, features used, and device/browser information. This helps us improve WorthIQ.

2. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the WorthIQ service
  • Display your financial accounts, balances, and transaction history
  • Generate AI-powered insights via Sage (processed using Anthropic's API)
  • Authenticate you and keep your account secure
  • Send transactional emails (e.g., password resets)
  • Improve and develop new features
  • Comply with legal obligations

We do not sell your personal or financial data to third parties. We do not use your financial data for advertising.

3. Data Storage and Security

Your data is encrypted in transit using TLS 1.2+ and encrypted at rest using AES-256. We store your data on secure cloud infrastructure (Railway). Access to production databases is restricted to authorized personnel and requires multi-factor authentication.

No method of transmission over the Internet is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

4. Third-Party Services

WorthIQ uses the following third-party services:

  • Plaid: Bank account connection and financial data retrieval.
  • Anthropic (Claude API): AI-powered financial insights via Sage. Financial data sent to Anthropic is used only for generating your insights and is not used to train their models.
  • Railway: Backend hosting and database infrastructure.
  • Vercel: Frontend hosting.

5. Data Retention

We retain your data for as long as your account is active or as needed to provide you the service. If you delete your account, we will delete your personal data within 30 days, except where required to retain it by law.

6. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and associated data
  • Disconnect linked financial accounts at any time from within the app
  • Export your transaction data

To exercise these rights, contact us at worthiq2026@gmail.com.

7. Children's Privacy

WorthIQ is not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please contact worthiq2026@gmail.com.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or by placing a prominent notice on our website. Continued use of WorthIQ after changes are posted constitutes acceptance of the revised policy.

9. Contact Us

If you have questions about this Privacy Policy, please contact us:

  • Email: worthiq2026@gmail.com
  • Website: worthiq.io