privacy_tip Privacy Policy

Last updated: April 2026
1. Introduction

WealthPilot ("we", "our", "us") is committed to protecting your personal and financial data. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data.

2. Information We Collect
  • Account Information: Name, email address, age, monthly salary, and risk appetite — provided by you during registration and profile setup.
  • Financial Data: Income, expenses, investments, insurance policies, schemes, SIPs, loans, bank account balances, provident fund details, goals, and assets — all entered manually by you.
  • Usage Data: Application feature usage for improving user experience. We do NOT use third-party analytics or tracking scripts.
  • Uploaded Documents: Policy PDFs, bank statements, and scheme documents uploaded for OCR scanning — processed on our servers and not shared externally.
3. How We Use Your Information
  • To provide personalized financial management features (dashboard, budgeting, tracking)
  • To generate AI-powered investment recommendations using our proprietary engine
  • To send OTP verification emails and password reset emails
  • To send reminder notifications for premium due dates, EMI payments, and goal deadlines
  • To calculate financial health scores, tax savings, and budget analysis
4. What We Do NOT Do
  • We do NOT sell, rent, or share your personal or financial data with any third party
  • We do NOT use Google Analytics, Facebook Pixel, or any third-party tracking scripts
  • We do NOT display advertisements
  • We do NOT send your data to external AI services (all AI processing is done on our servers)
  • We do NOT collect data in the background — only data you explicitly enter is stored
5. Data Storage & Security
  • All data is stored in encrypted databases on our secure servers
  • Passwords are hashed using industry-standard algorithms — we never store plaintext passwords
  • All forms are protected against CSRF (Cross-Site Request Forgery) attacks
  • Login and registration are rate-limited to prevent brute-force attacks
  • File uploads are restricted to approved types (PDF, images) with size limits
6. Data Retention

Your data is retained as long as your account is active. If you request account deletion, all your personal and financial data will be permanently removed from our servers.

7. Your Rights
  • Access: You can view all your data through the application at any time
  • Correction: You can edit or update any information through the respective pages
  • Deletion: You can delete individual records or request full account deletion
  • Portability: You can export your financial reports
8. Cookies

WealthPilot uses essential session cookies for authentication and CSRF protection. We do not use advertising or tracking cookies.

9. Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be indicated by an updated "Last updated" date at the top of this page.

10. Contact Us

If you have questions about this Privacy Policy, you can reach us through the Feedback page after logging in.