Last updated: February 13, 2026
finqOS ("we", "our", "us") respects your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our financial research platform, including our website and mobile applications.
When you create an account, we collect your email address and display name. If you sign in with Google, GitHub, or Apple, we receive your name and email from the identity provider. Apple users may choose to use a private relay email address.
We store data you voluntarily enter, including: portfolio holdings and positions, watchlists, research canvas notes and analyses, stock screener configurations, and notification preferences. This data is yours and is used solely to provide the service.
We display publicly available market data (stock quotes, financial statements, company profiles) sourced from third-party data providers. No personal information is sent to these data providers.
We automatically collect anonymized usage analytics (page views, feature usage, web performance metrics) via Vercel Analytics and Speed Insights. We also collect error and crash data via Sentry to diagnose and fix technical issues. This data includes browser information, error stack traces, and interaction breadcrumbs but does not include your financial data or portfolio information.
If you subscribe to a paid plan, payment processing is handled entirely by Stripe. We never see, store, or have access to your full credit card number. We receive only your subscription status and Stripe customer identifier.
We do not sell your personal data. We do not use your financial data for advertising. We do not share your data with third parties for marketing purposes.
| Service | Purpose | Data Shared |
|---|---|---|
| Supabase | Authentication & database | Account data, app data (encrypted at rest) |
| Stripe | Payment processing | Email, subscription status |
| Sentry | Error tracking | Error data, browser info (no financial data) |
| Vercel Analytics | Usage analytics | Anonymized page views & web vitals |
| Google, GitHub, Apple | OAuth authentication | Email, name (read-only, at sign-in) |
Your data is stored in Supabase (hosted on AWS, US East region) and encrypted at rest. All connections use HTTPS/TLS encryption in transit. Authentication uses industry-standard PKCE OAuth flows. We apply Row Level Security (RLS) policies so each user can only access their own data.
We retain your account data for as long as your account is active. Anonymized analytics data is retained for up to 90 days. When you delete your account, all associated data is permanently removed from our systems, including portfolios, watchlists, research notes, and notification preferences. Stripe customer records are also deleted.
If you are in the EU, you have the right to: access your personal data, rectify inaccurate data, erase your data ("right to be forgotten"), data portability, restrict processing, and object to processing. You can exercise these rights by contacting us or by using the account deletion feature in the app.
If you are a California resident, you have the right to: know what personal information is collected, delete your personal information, and opt-out of the sale of personal information. We do not sell personal information.
You can delete your account at any time from the Account Settings page within the app. Account deletion permanently removes all your data from our systems, cancels any active subscriptions, and deletes your Stripe customer record. This action cannot be undone.
We use essential cookies only, for authentication session management. We do not use advertising cookies or tracking cookies. Analytics are collected via Vercel Analytics, which does not use cookies. You can manage your cookie preferences at any time.
finqOS collects anonymized, first-party usage telemetry (e.g., page views, feature usage counts, session duration) under the lawful basis of legitimate interest (GDPR Article 6(1)(f)).
Third-party analytics (Vercel Speed Insights) and Sentry session replay are only enabled with your explicit opt-in consent via the cookie consent banner. These are not covered by legitimate interest and require active consent.
finqOS is not directed at children under 13. We do not knowingly collect personal information from children under 13. If we become aware that a child under 13 has provided personal information, we will delete it promptly.
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a new "Last updated" date. Your continued use of finqOS after changes constitutes acceptance of the updated policy.
If you have questions about this Privacy Policy or your data, contact us at privacy@finqos.com.
Join the waitlist - we'll let you know when we launch.