Privacy Policy
Effective Date: April 19, 2026 · Last Updated: April 19, 2026
1. Introduction
This Privacy Policy explains how MyNetWorth (the "Service") collects, uses,
stores, and shares information about you. The Service is operated by
SuperCala LLC ("SuperCala," "we," "us," or "our"), a North Carolina limited
liability company.
MyNetWorth is a personal net-worth tracker. To calculate your net worth we
connect, with your explicit permission, to third-party financial institutions
and valuation services. This policy is specific to MyNetWorth; the
SuperCala
studio-wide policy covers our marketing site and products that do not
handle financial data.
2. Information We Collect
Account information
- Email address and name (or display name) you provide at sign-up.
- Authentication credentials — we never store your password in plaintext;
passwords are salted and hashed. If you sign in with Google, Apple, or
Microsoft, we receive only the basic profile fields those providers
return (email, name, provider-issued user ID).
- Two-factor authentication secrets, if you enable 2FA.
- Subscription and billing state (tier, renewal date, payment status).
Actual payment card details are handled by Stripe and never touch our
servers.
Financial data you choose to connect
- Bank, credit card, and loan accounts — connected via
Plaid. We receive account names, types, balances, and (optionally)
transactions. We do not receive or store your bank login
credentials. Plaid authenticates you directly with your financial
institution and provides us with a connection token.
- Brokerage and retirement accounts — connected via
SnapTrade. We receive account names, balances, and holdings.
As with Plaid, we do not receive your brokerage login credentials;
SnapTrade handles authentication directly with the broker.
- Real-estate properties — the address you enter is sent
to RentCast to retrieve an automated valuation. We store the address
and the returned value estimate.
- Cryptocurrency wallets — the public wallet addresses
you enter. We read balances from public blockchain data; no private
keys are ever requested, transmitted, or stored.
- Manually entered assets and liabilities — vehicles,
personal property, mortgages, loans, and anything else you add by
hand.
AI analyst conversations
- The text of your questions to the AI financial analyst.
- Relevant portions of your financial data that the analyst needs to
answer your question (for example, your account balances or holdings).
These are sent to our LLM provider(s) — OpenAI and/or Anthropic — as
described in Section 4.
Usage and device data
- IP address, browser type, operating system, and device type, collected
automatically when you use the Service.
- Pages visited, features used, and timestamps of those events, for
service reliability and abuse prevention.
- Session cookies used to keep you signed in. We do not use third-party
advertising cookies or cross-site trackers.
3. How We Use Your Information
- To calculate and display your net worth, portfolio composition, and
historical snapshots.
- To retrieve price and valuation data from third-party APIs (e.g.,
security prices, property values).
- To answer your questions in the AI financial analyst.
- To authenticate you, secure your account, and enforce rate limits.
- To operate subscription billing via Stripe.
- To send transactional email (password resets, billing receipts,
security alerts). We do not send marketing email from this Service.
- To comply with legal obligations and enforce our
Terms of Service.
We do not sell your personal information. We do not share your financial
data with advertisers. Your financial data is not used to train machine
learning models.
4. Third-Party Services
MyNetWorth integrates with the following service providers. Each has its
own privacy policy that governs what they do with data we share with them.
| Provider |
Role |
Data shared |
| Plaid |
Bank / card / loan aggregation |
Connection token, institution ID; Plaid stores your credentials, not us |
| SnapTrade |
Brokerage aggregation |
User ID, connection token; SnapTrade stores your broker credentials, not us |
| RentCast |
Real-estate valuation |
Property address you provide |
| OpenAI |
AI financial analyst |
Your question text and relevant financial context |
| Anthropic |
AI financial analyst (fallback / escalation) |
Your question text and relevant financial context |
| Stripe |
Payment processing |
Name, email, and payment card details (Stripe collects card info directly; we never see it) |
| Google / Apple / Microsoft |
Optional OAuth sign-in |
Only if you choose to sign in with that provider — email, name, provider user ID |
| Cloud hosting (Railway) |
Infrastructure |
All stored data is hosted on infrastructure operated by our cloud providers |
Under contract with OpenAI and Anthropic, content submitted through the API
is not used to train their models. We do not enable any "opt-in training"
settings.
5. Data Storage and Security
- Hosting location. Data is stored on cloud infrastructure
located in the United States.
- Encryption in transit. All connections to the Service
use TLS 1.2 or higher.
- Encryption at rest. Sensitive tokens (Plaid access
tokens, SnapTrade secrets, OAuth refresh tokens) are encrypted with a
key held only by the application.
- Access control. Only a small number of SuperCala
personnel can access production infrastructure, and only for
operational purposes (incident response, billing support). Financial
data is not routinely reviewed by staff.
- Breach notification. If we become aware of a security
breach that materially affects your personal data, we will notify
affected users as required by applicable law.
6. Data Sharing and Disclosure
We share personal data only in these circumstances:
- With the service providers listed in Section 4, solely to operate the
Service.
- To comply with a lawful subpoena, court order, or similar legal
process, after review and only to the extent legally required.
- To protect the rights, property, or safety of SuperCala, our users, or
the public (for example, fraud prevention).
- In connection with a merger, acquisition, or sale of assets — in which
case we will provide notice before your information is transferred and
becomes subject to a different privacy policy.
7. Data Retention
- Account and financial data is retained for as long as your account is
active.
- When you delete your account, we remove your account record and
associated financial data from production systems within 30 days.
Encrypted backups are purged within 90 days on our standard rotation.
- You can disconnect an individual Plaid or SnapTrade connection at any
time from the dashboard; we will revoke the connection token with the
upstream provider.
- We may retain minimal records (e.g., billing invoices, security logs)
longer where required by law or for legitimate business reasons such as
tax and accounting compliance.
8. Your Rights
Depending on where you live, you may have some or all of the following
rights. To exercise any of them, email
mynetworth-privacy@supercala.ai.
- Access. Request a copy of the personal data we hold
about you.
- Correction. Ask us to correct information that is
inaccurate.
- Deletion. Delete your account and associated data.
You can also delete your account directly from the dashboard's
Settings page.
- Portability. Request an export of your data in a
machine-readable format.
- Opt-out of "sale" or "sharing" (California residents).
We do not sell or share personal information as those terms are
defined by the California Consumer Privacy Act, so no opt-out is
necessary, but you retain the right to request confirmation of that
fact.
- Non-discrimination. We will not deny you service,
charge you different prices, or provide a different level of service
because you exercised any of these rights.
9. Children's Privacy
MyNetWorth is not directed to children under 18, and we do not knowingly
collect personal information from anyone under 18. If we learn that we
have collected information from a minor, we will delete it promptly. If
you believe a minor has provided us with information, please contact
mynetworth-privacy@supercala.ai.
10. International Users
MyNetWorth is operated from, and primarily serves users in, the United
States. If you access the Service from outside the United States, you
understand that your information will be transferred to, stored, and
processed in the United States, where privacy laws may differ from those
in your jurisdiction.
11. Changes to This Policy
We may update this Privacy Policy from time to time. When we make material
changes, we will update the "Last Updated" date at the top and, for
significant changes, notify you by email or an in-app notice before the
changes take effect. Continued use of the Service after an update means you
accept the updated policy.
12. Contact Us
Questions about this Privacy Policy, or requests to exercise any of the
rights described in Section 8: