Privacy Policy

This Privacy Policy explains how ClearPlan ("ClearPlan," "we," "us," or "our") collects, uses, shares, and protects information when you use the ClearPlan service (the "Service") at getclearplan.com and related products. By using the Service, you agree to the practices described in this policy.

1. Who we are

ClearPlan is operated by [LEGAL ENTITY NAME], a [STATE OF FORMATION] [ENTITY TYPE] with its principal place of business at [ADDRESS]. For privacy questions, contact hello@getclearplan.com.

2. Information we collect

Information you provide directly

• Account information. When you sign up, we collect your email address and a password. Passwords are stored as cryptographic hashes by our authentication provider; we do not see or store the plaintext.
• Firm and profile details. Your firm name, advisor name, advisor title, logo image, and brand colors.
• Plan content. The financial figures the advisor types into a plan (net worth, asset allocation, tax-rate estimates, retirement targets, and similar summary numbers), net worth history, and free-text fields you choose to enter (overview, goals, recommendations, notes, plan label).
• Billing information. When you subscribe, our payment processor (Stripe) collects your billing details. We receive a billing identifier and subscription status; we do not store your payment card number.
• Communications. If you email us, we keep a record of the correspondence to respond and improve the Service.

Information we collect automatically

• Log data. Server logs containing IP address, browser type, request paths, timestamps, and similar metadata. Used for security, debugging, and abuse prevention. Retained for up to 90 days.
• Cookies and similar. Strictly-necessary session cookies set by our authentication provider to keep you signed in. We do not use third-party advertising or tracking cookies.

Information we do not collect

The Service is intentionally designed not to collect Social Security numbers, government-issued IDs, bank or brokerage account numbers, custodian credentials, account-level statements, or end-client home addresses, dates of birth, or contact details. There is no field in the application to enter such information.

3. How we use information

We use information to:

• Provide, operate, and maintain the Service;
• Authenticate users and protect accounts;
• Process subscriptions and billing;
• Respond to support requests and customer communications;
• Monitor for abuse, fraud, and security incidents;
• Comply with legal obligations.

We do not sell personal information. We do not share personal information for cross-context behavioral advertising.

4. End-client information you enter into the Service

If you are a financial advisor using ClearPlan to prepare plans for your end clients, the plan content you enter may relate to those end clients. You are the data controller for that information. ClearPlan is a data processor that stores and displays the information back to you on your instructions. Our handling is governed by our Data Processing Addendum, which forms part of these Terms when you use the Service in that capacity.

5. How we share information

We share information only with the third-party service providers necessary to operate the Service. The current list is at /subprocessors and includes:

• Supabase — database, authentication, file storage
• Vercel — application hosting
• Stripe — subscription billing and payment processing

We may also disclose information to comply with a valid legal request, to protect our rights, or in connection with a sale, merger, or acquisition of our business (in which case we will notify customers and offer reasonable choices).

6. Where information is stored

All customer information is processed and stored in the United States. By using the Service from outside the United States, you consent to the transfer of your information to the United States.

7. Security

We use technical and organizational measures appropriate to the data we hold, including TLS encryption in transit, encryption at rest by our database provider, Row-Level Security policies enforcing user isolation in the database, and restricted administrative access. See our Security & Privacy page for details. No system is perfectly secure; we cannot guarantee against unauthorized access.

8. Data retention

• Account, profile, plan, and firm-settings data: retained for the life of your subscription.
• Log data: up to 90 days.
• Billing records: retained as required by tax and accounting laws (typically 7 years).
• Backup data: residual backups purged within 30 days of account deletion.

9. Your rights

Depending on your jurisdiction, you may have the right to:

• Access the personal information we hold about you;
• Correct inaccurate information;
• Delete your account and associated data (available in-app via Firm Setup → Delete Account, or by emailing us);
• Receive a copy of your information in a portable format;
• Withdraw consent (which may limit your ability to use the Service);
• Lodge a complaint with your local data protection authority.

To exercise any of these rights, email hello@getclearplan.com. We respond within 30 days.

10. California residents

If you are a California resident, the California Consumer Privacy Act ("CCPA") gives you specific rights regarding your personal information. We do not sell or share personal information as those terms are defined under the CCPA. To exercise your rights, contact us at the email above.

11. Children

The Service is intended for use by professional financial advisors and is not directed to individuals under 18. We do not knowingly collect personal information from children.

12. Changes to this policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the most recent revision. Material changes will be communicated by email to active subscribers at least 14 days before taking effect.

13. Contact

Privacy questions, data subject rights requests, and DPA requests: hello@getclearplan.com.