Privacy Policy

We collect the following categories of information when you use RetireWise:

• Account information. When you create an account, we collect your email address and authentication credentials. If you sign in through a third-party provider (such as Google), we receive basic profile information from that provider.
• Retirement plans and calculator inputs. When you save a retirement plan, the financial inputs you provide — such as account balances, contribution amounts, expected retirement age, and portfolio allocations — are stored in our database so you can access and update them later.
• Usage analytics. We collect anonymized usage data such as pages visited, features used, and general interaction patterns. This helps us understand how the service is used and where we can improve it.

We use the information we collect for the following purposes:

• To provide, maintain, and improve the RetireWise service, including running retirement projections, Monte Carlo simulations, and other calculations based on your inputs.
• To authenticate your identity and manage your account sessions securely.
• To store and retrieve your saved retirement plans so that your data persists between sessions.
• To analyze aggregate usage patterns in order to improve product features and user experience.
• To communicate with you regarding your account, service updates, or support requests.

RetireWise offers AI-powered insights to help you interpret your retirement projections. This feature is powered by Claude, a large language model developed by Anthropic.

When you request an AI analysis, your calculator inputs and projection results are sent to Anthropic's API for processing. This data is transmitted securely over encrypted connections and is used solely to generate your personalized insights in real time.

Anthropic does not store your inputs or outputs after the request is complete. Your data is not used by Anthropic to train, improve, or fine-tune their models. Each AI analysis request is processed transiently and discarded once the response has been delivered to you.

All payment processing is handled by Stripe, a PCI-DSS Level 1 certified payment processor. When you subscribe to a paid plan, your payment information (including credit card number, expiration date, and billing address) is collected and processed directly by Stripe.

RetireWise does not receive, store, or have access to your full credit card details. We only receive a confirmation of payment status and a Stripe customer identifier, which we use to manage your subscription.

RetireWise uses cookies strictly for authentication and essential site functionality. We do not use advertising cookies, tracking pixels, or third-party marketing cookies.

When you sign in, Auth.js (our authentication framework) sets a secure, HTTP-only session cookie that identifies your authenticated session. This cookie is required for the service to function and cannot be disabled while using an authenticated account.

Your account data and saved retirement plans are stored in a Supabase-managed PostgreSQL database hosted on Amazon Web Services (AWS) in the US East (N. Virginia) region (us-east-1).

We implement industry-standard security measures to protect your data, including encryption in transit (TLS) and encryption at rest. Database access is restricted through role-based access controls and connection pooling with secure credentials. Regular backups are maintained to prevent data loss.

We do not sell, rent, or share your personal data with third parties for their own marketing or commercial purposes. Your financial information and retirement plan data remain private.

We share data only with the following service providers, and only to the extent necessary to operate the service:

• Supabase — database hosting and authentication infrastructure.
• Stripe — payment processing for subscriptions.
• Anthropic — transient processing of calculator inputs for AI-generated insights.

We may also disclose your information if required to do so by law, court order, or governmental regulation, or if we believe in good faith that such disclosure is necessary to protect our rights, your safety, or the safety of others.

You have the following rights with respect to your personal data:

• Access. You may request a copy of the personal data we hold about you.
• Export. You may request an export of your saved retirement plans and account data in a portable format.
• Deletion. You may request that we permanently delete your account and all associated data from our systems.
• Correction. You may update or correct your account information at any time through the application settings.

To exercise any of these rights, please contact us at support@retirewise.me. We will respond to your request within 30 days.

We retain your personal data and saved retirement plans for as long as your account remains active. If you stop using the service but do not delete your account, your data will remain stored so that it is available if you return.

Upon receiving a deletion request, we will permanently remove your account data, saved plans, and any associated personal information from our active databases within 30 days. Residual copies in encrypted backups may persist for up to 90 days before being automatically purged.

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable laws. When we make changes, we will revise the "Last updated" date at the top of this page.

For material changes that significantly affect how we handle your personal data, we will make reasonable efforts to notify you — for example, by posting a prominent notice on our website or sending an email to the address associated with your account. Your continued use of RetireWise after any changes take effect constitutes your acceptance of the updated policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Email: support@retirewise.me