Privacy Policy

How we collect, use, and protect your data. We believe privacy is a right, not a feature — and we build Plenifi accordingly.

Last updated: April 17, 2026

1. Introduction

Plenifi, Inc. ("Plenifi," "we," "us," or "our") operates a personal finance application that aggregates banking, investment, and budgeting data into a unified household-level view. This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use our application and website (collectively, the "Service").

By accessing or using the Service, you agree to the terms of this Privacy Policy. If you do not agree, please do not use the Service.

2. Information We Collect

2.1 Account Information

When you create a Plenifi account, we collect:

  • Identity information — your name, email address, and password (hashed, never stored in plaintext)
  • Authentication data — session tokens, two-factor authentication preferences, and login history
  • Household information — organization membership details if you join or create a household

2.2 Financial Data via Plaid

When you connect a bank account, credit card, or other depository account through Plaid, we receive:

  • Account names, types, balances, and mask numbers (last four digits)
  • Transaction history, including merchant names, amounts, dates, and categories
  • Institution names and connection status

We never receive or store your bank login credentials. Those are handled entirely by Plaid's infrastructure. Our access is strictly read-only — Plenifi cannot initiate transfers, payments, or any movement of funds.

2.3 Investment Data via SnapTrade

When you connect a brokerage account through SnapTrade, we receive:

  • Account names, types, and balances
  • Portfolio holdings, including ticker symbols, quantities, and current market values
  • Investment transaction history (buys, sells, dividends, contributions)

As with Plaid, your brokerage credentials are handled entirely by SnapTrade. We receive read-only data and cannot execute trades or move assets on your behalf.

2.4 Usage Analytics via PostHog

We use PostHog to understand how people use Plenifi so we can improve the product. We collect:

  • Page views and navigation patterns
  • Feature usage and interaction events
  • Browser type, operating system, and screen resolution
  • Approximate geographic location (country/region level, derived from IP address)

PostHog analytics never capture financial data such as account balances, transaction amounts, or holdings. We do not use PostHog to build advertising profiles.

2.5 Information We Do Not Collect

  • We do not collect Social Insurance Numbers (SIN) or Social Security Numbers (SSN)
  • We do not collect credit scores or credit reports
  • We do not collect biometric data
  • We do not purchase data from third-party data brokers

3. How We Use Your Information

We use the information we collect to:

  • Provide the Service — aggregate your financial accounts, calculate net worth, display cash flow, track budgets, and generate investment performance metrics
  • Maintain your account — authenticate your identity, manage sessions, and process two-factor authentication
  • Support household features — enable you to share accounts with household members you invite
  • Improve the product — analyze usage patterns to identify bugs, improve performance, and prioritize features
  • Communicate with you — send service-related notifications such as sync failures, security alerts, or policy updates
  • Detect and prevent issues — identify duplicate transactions, flag potential data quality problems, and maintain service integrity

4. How We Store and Protect Your Data

4.1 Infrastructure

Your data is stored in a PostgreSQL database hosted on Railway. All data is encrypted at rest using AES-256 encryption. All data in transit is encrypted using TLS 1.3.

4.2 Authentication Security

User authentication is managed through a self-hosted authentication system. Passwords are hashed using industry-standard algorithms and are never stored in plaintext. Session tokens are encrypted using JWE (JSON Web Encryption) and stored as secure, HTTP-only cookies. We support two-factor authentication for additional account security.

4.3 Access Controls

Access to production systems is restricted to authorized personnel through role-based access controls. All database queries are scoped to the authenticated user's household, ensuring that one user cannot access another household's financial data.

4.4 Monitoring

We log access to production systems and monitor for unauthorized access attempts. Financial data is never logged in application logs.

5. Third-Party Data Sharing

We share your information only with the following third parties, and only as necessary to provide the Service:

Provider Purpose Data Shared
Plaid Banking data aggregation Connection tokens to retrieve your account and transaction data
SnapTrade Brokerage data aggregation Connection tokens to retrieve your holdings and investment data
Railway Database hosting All application data (encrypted at rest)
PostHog Product analytics Anonymized usage events (no financial data)

We never sell your personal or financial data. We do not share data with advertisers, data brokers, or any party not listed above. We do not monetize your data in any way — Plenifi is funded by subscription revenue.

6. Your Rights

You have the following rights regarding your data:

  • Access — you can request a complete copy of the personal and financial data we hold about you
  • Export — you can export your data in a machine-readable format at any time through the application settings
  • Correction — you can request correction of any inaccurate personal information
  • Deletion — you can request deletion of your account and all associated data. Upon deletion, we will remove your data from our active systems within 30 days and from backups within 90 days
  • Disconnect — you can disconnect any linked financial institution at any time, which revokes our access to future data from that institution
  • Withdraw consent — you can withdraw consent for analytics collection at any time through your account settings

To exercise any of these rights, contact us at privacy@plenifi.com.

7. Data Retention

We retain your data as follows:

  • Active accounts — your data is retained for as long as your account is active and you maintain connected financial institutions
  • Closed accounts — upon account deletion, personal data is purged from active systems within 30 days and from encrypted backups within 90 days
  • Disconnected institutions — when you disconnect a financial institution, we stop receiving new data but retain previously synced data as part of your financial history unless you request its deletion
  • Analytics data — usage analytics are retained for 12 months, after which they are aggregated and anonymized
  • Server logs — application logs are retained for 30 days for debugging and security purposes

8. Children's Privacy

Plenifi is not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that a child under 18 has provided us with personal information, we will take steps to delete that information promptly. If you believe a child has provided us with personal data, please contact us at privacy@plenifi.com.

9. International Data Transfers

Plenifi is operated from Canada. If you access the Service from outside Canada, your data may be transferred to and processed in Canada. By using the Service, you consent to the transfer of your data to Canada, where data protection laws may differ from those in your jurisdiction.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email and update the "Last updated" date at the top of this page. We encourage you to review this policy periodically. Continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy, your data, or your rights, contact us at: