FinHQ

Privacy Policy

Effective June 27, 2026

This is a draft provided for convenience and is not legal advice. Please have it reviewed by qualified counsel before relying on it.

1. Introduction

This Privacy Policy explains how FinHQ (“we”, “us”) collects, uses, and shares information when you use the Service.

2. Information we collect

  • Account information: your email address and authentication identifier, collected when you sign up or sign in (via Google sign-in or email/password, using Firebase Authentication).
  • Content you create: watchlists, dashboard layouts, and preferences you save, stored in Google Firestore.
  • Optional credentials: if you choose to provide third-party API keys, they are encrypted at rest using Google Cloud Key Management Service (KMS).
  • Technical information: standard server logs, device and browser information, and cookies / local storage used for authentication and saving your preferences.

3. How we use information

To provide and operate the Service; authenticate you; save your watchlists, models, and preferences; send transactional emails you request (such as Deep Dive briefs and password resets); maintain security; and improve the product.

4. How we share information

We share data with service providers that help us run the Service, including: Google Firebase and Google Cloud (authentication, database, key management, infrastructure); Vercel (hosting); third-party market-data providers (queried by ticker symbol, not by your personal data); AI providers including Anthropic, DeepSeek, and OpenAI (which process prompts and content to generate research, summaries, and audio); and Resend (to send transactional email). We do not sell your personal information.

5. Cookies and local storage

We use cookies and browser local storage to keep you signed in and to remember interface preferences (such as sidebar state and dashboard density).

6. Data retention

We retain your information while your account is active and delete it upon your request or account deletion, subject to legal obligations.

7. Security

We use encryption in transit (HTTPS) and encrypt provided API keys at rest. No method of transmission or storage is completely secure.

8. Your rights

You may request access to, correction of, or deletion of your personal information by contacting admin@finhq.ai. Depending on where you live (for example, the EU/UK or California), you may have additional rights.

9. Children

The Service is not directed to children under 18, and we do not knowingly collect their information.

10. International users

Your information may be processed in the United States.

11. Changes

We may update this Policy; material changes will be reflected by updating the effective date.

12. Contact

Privacy questions: admin@finhq.ai.