1. Introduction
MyWealthPilot ("we", "our", "us") is committed to protecting your personal and financial data. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data.
2. Information We Collect
- Account Information: Name, email address, age, monthly salary, and risk appetite — provided by you during registration and profile setup.
- Financial Data: Income, expenses, investments, insurance policies, schemes, SIPs, loans, bank account balances, provident fund details, goals, and assets — all entered manually by you.
- Usage Data: Application feature usage for improving user experience. We do NOT use third-party analytics or tracking scripts.
- Uploaded Documents: Policy PDFs, bank statements, and scheme documents uploaded for OCR scanning — processed on our servers and not shared externally.
3. How We Use Your Information
- To provide personalized financial management features (dashboard, budgeting, tracking)
- To generate AI-powered investment recommendations using our proprietary engine
- To send OTP verification emails and password reset emails
- To send reminder notifications for premium due dates, EMI payments, and goal deadlines
- To calculate financial health scores, tax savings, and budget analysis
4. What We Do NOT Do
- We do NOT sell, rent, or share your personal or financial data with any third party
- We do NOT use Google Analytics, Facebook Pixel, or any third-party tracking scripts
- We do NOT display advertisements
- We do NOT send your data to external AI services (all AI processing is done on our servers)
- We do NOT collect data in the background — only data you explicitly enter is stored
5. Data Storage & Security
- All data is stored in encrypted databases on our secure servers
- Passwords are hashed using industry-standard algorithms — we never store plaintext passwords
- All forms are protected against CSRF (Cross-Site Request Forgery) attacks
- Login and registration are rate-limited to prevent brute-force attacks
- File uploads are restricted to approved types (PDF, images) with size limits
6. Data Retention
Your data is retained as long as your account is active. If you request account deletion, all your personal and financial data will be permanently removed from our servers.
7. Your Rights
- Access: You can view all your data through the application at any time
- Correction: You can edit or update any information through the respective pages
- Deletion: You can delete individual records or request full account deletion
- Portability: You can export your financial reports
8. No Bank Access
- We do NOT connect to your bank accounts or UPI
- We do NOT ask for your bank passwords, PINs, or OTPs
- We do NOT initiate any financial transactions on your behalf
- All financial data is manually entered by you — we never auto-pull data
- Payment processing for premium plans is handled securely by Razorpay (RBI-authorized)
9. DPDP Act 2023 Compliance
MyWealthPilot complies with the Digital Personal Data Protection Act, 2023 (India):
- Lawful Purpose: We process your data only for providing financial management services that you consented to during registration
- Data Minimization: We collect only the data necessary for app functionality — nothing extra
- Consent: By creating an account, you consent to this privacy policy. You can withdraw consent by deleting your account
- Right to Erasure: You can request complete deletion of all your data at any time
- Data Fiduciary: MyWealthPilot (mywealthpilot.in) acts as the Data Fiduciary responsible for your personal data
- Grievance Redressal: Contact us through the Feedback page for any privacy-related concerns. We will respond within 30 days
10. Cookies
MyWealthPilot uses essential session cookies for authentication and CSRF protection. We do not use advertising or tracking cookies.
11. Changes to This Policy
We may update this Privacy Policy from time to time. The updated version will be indicated by an updated "Last updated" date at the top of this page.
12. Contact Us
If you have questions about this Privacy Policy, you can reach us through the Feedback page after logging in, or email us at the address listed on our Contact page.