C
ClearViewSign In

Privacy Policy

Effective date: March 23, 2026  ·  Fiducia AI Labs LLC

1. Overview

ClearView Financial (“ClearView,” “we,” “us”) is operated by Fiducia AI Labs LLC, a Florida single-member LLC. We provide investment performance analysis tools for individual investors and registered investment advisors (“RIAs”). This Privacy Policy explains what data we collect, how we use it, and the rights you have over it.

We do not sell your data. We do not use your financial data for advertising. We do not share your data with third parties except as described in this policy.

This policy covers two types of users: individual investors who create their own ClearView account, and managed clients whose data is linked to the platform by their financial advisor (see Section 11).

2. Data We Collect

Account Data

When you create an account we collect your email address and a hashed password (via Supabase Auth). If you sign in with Google OAuth, we receive your email and Google profile ID — we do not receive your Google password.

Financial Data via Plaid

ClearView uses Plaid Technologies, Inc. to retrieve financial data from your brokerage and bank accounts. When you connect an institution, Plaid authenticates directly with that institution on your behalf and returns data to us. We store:

  • Investment holdings (security name, ticker, quantity, market value)
  • Investment transactions (trade date, type, amount, symbol)
  • Bank and credit card transactions (date, merchant, amount, category)
  • Account balances and account type metadata
  • Credit card liability details (APR, payment due dates, minimum payments)
  • Mortgage details (rate, term, outstanding balance)

Your Plaid access token (the credential that allows us to re-sync your accounts) is encrypted using AES-256-CBC with a unique random initialization vector before being stored in our database. The encryption key is stored separately in environment variables and never committed to source code.

Plaid's use of your data is governed by Plaid's Privacy Policy and End User Privacy Policy.

Usage Data

We may collect basic analytics data (page views, feature usage) through Vercel's built-in analytics. This data is aggregated and not linked to your financial data.

3. How We Use Your Data

We use your data exclusively to:

  • Calculate investment performance metrics (money-weighted returns, asset allocation, fee analysis)
  • Generate cash flow reports and spending analysis
  • Display your balance sheet (net worth, assets, liabilities)
  • Sync updated account data when you request a sync
  • Send transactional emails (e.g., account verification, password reset)

We do not use your data to train AI models, sell to data brokers, or generate advertising profiles. If you are an individual user, your data is never shared with financial advisors or third-party institutions. If you are a managed client, your data is shared only with your advisor's firm as described in Section 11.

4. Data Storage & Security

Your data is stored in a Supabase PostgreSQL database with row-level security (RLS) enforced at the database layer — your data is only accessible by your authenticated session. We use:

  • AES-256-CBC encryption for all Plaid access tokens
  • TLS 1.2+ in transit for all API calls
  • Row-level security policies on all financial data tables
  • Environment-variable-based secrets management (never in source code)

5. Third-Party Services

ServicePurposeData Shared
PlaidFinancial data connectivityBank credentials (never stored by us)
SupabaseDatabase & authenticationAll stored user data
VercelWeb hostingRequest logs (IP, user agent)
RailwayCalculation engine hostingHoldings & transaction data for analysis
ResendTransactional email deliveryEmail address (for invite and notification emails)

6. Data Retention

We retain your data for as long as your account is active. If you delete your account, all associated financial data (holdings, transactions, analyses) is permanently deleted within 30 days. Plaid access tokens are revoked immediately upon account disconnection or deletion.

You can delete individual accounts, specific analyses, or your entire profile at any time from the Manage My Data page.

7. Your Rights

You have the right to:

  • Access — Export all your data as JSON from the Manage My Data page
  • Deletion — Delete individual accounts, analyses, or your full profile
  • Correction — Contact us to correct inaccurate data
  • Portability — Download your data in a machine-readable format
  • Revoke Plaid access — Disconnect any institution at any time

See our Your Data page for step-by-step instructions.

8. Children's Privacy

ClearView is not directed to children under 13. We do not knowingly collect data from children under 13. If you believe a child has provided us data, contact us immediately.

9. Changes to This Policy

We will notify registered users by email of material changes to this policy at least 14 days before they take effect. Continued use of the service after the effective date constitutes acceptance.

11. Advisor & Managed Client Data

RIA Advisors (Data Controllers)

Registered investment advisors who use ClearView to manage client portfolios act as Data Controllers under applicable data protection law. ClearView acts as a Data Processor on behalf of the advisor's firm. The relationship is governed by a Data Processing Agreement (DPA) that advisors must accept before gaining access to client management features.

Advisors are responsible for: obtaining their clients' consent to share financial data with ClearView; providing clients with appropriate disclosures (including a reference to this Privacy Policy); and handling their clients' data rights requests (access, deletion, portability).

Managed Clients (Data Subjects)

If your financial advisor uses ClearView to manage your portfolio, you are a “managed client.” You do not create a ClearView account. Instead, your advisor sends you a one-time secure link to authorize Plaid to share your account data with ClearView on your advisor's behalf.

As a managed client, we collect and store the same categories of financial data described in Section 2 (holdings, transactions, balances, account metadata). Your data is:

  • Accessible only to your advisor's firm — not to other advisors or ClearView staff in the ordinary course of operations
  • Logged in an immutable audit trail every time your advisor accesses it
  • Deleted within 30 days if your advisor removes your record or terminates their subscription
  • Never used for advertising, AI model training, or sold to third parties

Consent: Before your Plaid account-linking session begins, you will be shown a consent screen disclosing exactly what data will be shared and with whom. Your explicit consent is required and the timestamp is recorded.

Your rights: To exercise your rights (access, deletion, correction, or portability of your data), contact your advisor directly or email privacy@getclearview.ai with your advisor's firm name and your full name. We will respond within 30 days.

Audit Trail

Every time an advisor accesses a managed client's portfolio data, the access is recorded in an immutable audit log (timestamp, action, advisor identity). This log is retained for 7 years and cannot be deleted — it exists to protect both clients and advisors. Advisors can view their own firm's audit log; ClearView staff access the log only in response to a valid legal request or security incident.

10. Contact

For privacy questions, data requests, or to exercise your rights:

Fiducia AI Labs LLC

Email: privacy@getclearview.ai