Legal
Privacy Policy
Effective date: July 11, 2026 · Last updated: July 11, 2026
The short version
Swanvista exists to show you your own money, privately. We collect what the product needs to work — your account details, the financial data you link or enter, and basic usage data — and nothing else. We never sell your data, never show ads, and never see your bank or brokerage passwords. Linked-account tokens are encrypted at rest. You can export your data as CSV and delete your account (and everything in it) yourself, anytime.
1. Scope
This Privacy Policy describes how Swanvista, an independently operated service ("we", "us"), collects, uses, shares, and protects information when you use swanvista.com, app.swanvista.com, and related services (the "Service"). It is incorporated into our Terms of Service. The Service is offered to residents of the United States and is intended for adults 18 and older.
2. Information we collect
Account information. When you sign up we collect your name, email address, and optionally a phone number, through our authentication provider (Clerk). We also store your product settings — sleeve targets, guardrail configurations, timezone, notification preferences, and similar plan settings.
Financial data you link. When you connect a bank, brokerage, or other financial account through Plaid or SnapTrade, we receive read-only data about those accounts: institution and account names and types, balances, holdings and positions, and transactions. When you add a crypto wallet, we collect the public wallet address you provide and read its balances from public blockchain records.
Financial data you enter. Manual accounts and balances, trades and trade journal entries, contributions, liabilities, notes, and tags you create in the app.
Usage and device data. Log data such as IP address, browser type, pages viewed, and timestamps; error reports; and email delivery and engagement events (for example, whether a wealth brief was delivered). We use privacy-respecting operational telemetry — we do not use third-party advertising trackers.
Support communications. Messages you send us, and our responses.
3. Information we never collect
- Your bank or brokerage usernames and passwords — you enter those directly with Plaid or SnapTrade; they are never transmitted to or stored on Swanvista servers.
- Crypto private keys or seed phrases — wallets are tracked by public address only, read-only.
- Full payment card numbers — when paid subscriptions launch, cards will be processed by Stripe and will never touch our servers.
4. Plaid
We use Plaid Inc. to connect your bank and cash accounts. When you link an account, you provide your credentials directly to Plaid, and Plaid collects information from your financial institution on your behalf — including account balances and account details — and shares it with us so the Service can display your accounts. By linking an account through Plaid you grant Plaid the right to collect and process this data as described in the Plaid End User Privacy Policy, which we encourage you to read. You can disconnect a Plaid-linked account at any time in the app, which ends further collection; you can also manage or revoke Plaid's access via the Plaid Portal.
5. SnapTrade
We use SnapTrade to connect brokerage accounts on a read-only basis. You authenticate with your brokerage through SnapTrade's connection portal; SnapTrade then provides us your holdings, balances, and transaction history. SnapTrade's handling of your data is described in its own privacy policy. You can disconnect a brokerage connection at any time in the app.
6. How we use your information
- To provide the Service: display your net worth, classify holdings into sleeves, compute analytics (SwanScore, drift, guardrail status, projections, dividend and tax estimates), and keep the data fresh.
- To send you the emails you enable: wealth briefs, guardrail alerts, and service notices. Marketing email is optional and every email includes one-click unsubscribe.
- To secure the Service: authentication, rate limiting, fraud and abuse prevention, audit logging, and error monitoring.
- To operate the business: billing (when paid subscriptions launch), support, and aggregate, de-identified service analytics.
- To comply with law.
We do not sell your personal information, we do not share it for cross-context behavioral advertising, and we do not show ads. We also do not use your individual financial data to train machine-learning models or share it with data brokers.
7. Service providers (subprocessors)
We share data only with the service providers that run the Service, each bound to use it solely to provide their service to us:
| Provider | Purpose | Data involved |
|---|---|---|
| Clerk | Authentication and account management | Name, email, phone (optional), login credentials and MFA factors, session data |
| Vercel | Application hosting and serverless compute | All Service traffic passes through its infrastructure; request logs (IP address, user agent) |
| Neon | Primary database (PostgreSQL) | Your account record and financial data stored by the Service, encrypted at rest |
| Stripe | Payment processing (when paid subscriptions launch) | Name, email, payment card details (card numbers go directly to Stripe and never touch our servers), billing history |
| Plaid | Bank and cash-account linking | Bank account balances and account metadata; your bank credentials are entered with Plaid, not with us |
| SnapTrade | Brokerage account linking | Brokerage holdings, balances, and transactions; your brokerage credentials are entered with SnapTrade, not with us |
| Resend | Transactional and marketing email delivery | Email address, email content (wealth briefs, guardrail alerts), delivery and engagement events |
| Sentry | Error and performance monitoring | Error reports and stack traces with cookies, query strings, and auth headers stripped; session replays are error-only and fully masked |
| Upstash | Rate limiting | Short-lived request counters keyed by account or request identifiers; no financial data |
| Cloudflare | Content delivery (institution and fund logos) | Standard CDN request logs (IP address, user agent); no account or financial data |
| Market-data providers (Massive, Alpha Vantage, Financial Modeling Prep, Finnhub, Yahoo Finance) | Security prices, fundamentals, and dividend data | Ticker symbols we look up; no personal identifiers are sent |
Beyond these providers, we disclose personal information only if required by law or legal process, to protect the rights, safety, or property of Swanvista or others, or as part of a merger, acquisition, or sale of assets (in which case this policy continues to apply to your data until you are notified otherwise).
8. How we protect your information
- Encryption in transit (TLS) for all connections, and encryption at rest for the database.
- Linked-account access tokens (Plaid and SnapTrade) are additionally encrypted at the application layer with AES-256-GCM before storage.
- Multi-factor authentication is available on every account.
- Error monitoring is configured to strip cookies, query strings, and authentication headers, and session replays are error-only and fully masked — your financial figures are not visible in our monitoring tools.
- Rate limiting, audit logging of sensitive actions, and a strict content-security policy.
No system is perfectly secure; if a breach affecting your unencrypted personal information occurs, we will notify you as required by law. Security reports are welcome at security@swanvista.com.
9. Data retention
We keep your data for as long as your account is active. When you delete your account, your account record and the financial data tied to it are permanently deleted from the production database via cascading deletion, and Plaid- and SnapTrade-side access is revoked. Residual copies may persist temporarily in encrypted database backups: point-in-time backups are retained for approximately 6 hours, and certain pre-migration snapshots may persist longer until pruned. We retain a limited security audit trail (records of sensitive account actions, not your financial figures) after deletion for as long as reasonably necessary for security, fraud-prevention, and legal-compliance purposes, and billing records as required by tax and accounting law.
10. Your rights and controls
- Export — download your data as CSV from within the app, anytime.
- Deletion — delete your account yourself from account settings; deletion cascades to all of your data as described in Section 9.
- Disconnect — unlink any connected account at any time, which stops further collection from it.
- Email — every marketing email and recurring brief includes one-click unsubscribe (RFC 8058); transactional service notices are limited to what operating your account requires.
- Correction and access — much of your data is directly viewable and editable in the app; for anything else, email us.
We honor these rights for all users regardless of state of residence. To exercise any right you cannot exercise in-app, email privacy@swanvista.com from your account email address; we will verify and respond within 30 days. We do not discriminate against you for exercising privacy rights.
11. Where your data is processed
Swanvista is operated from the United States and your data is stored and processed in the United States. The Service is not offered to residents of the European Economic Area or the United Kingdom.
12. Children
The Service is for adults 18 and older. We do not knowingly collect personal information from anyone under 18; if we learn we have, we will delete it.
13. Changes to this policy
We may update this policy from time to time. If a change is material, we will notify you by email or in-app notice before it takes effect. The effective date at the top reflects the latest version.
14. Contact
Swanvista
privacy@swanvista.com