--- title: "Privacy Policy | Fignis" description: "Read how Fignis collects, uses, protects, shares, retains, and deletes account, planning, analytics, and support data." locale: "en" kind: "landing-page" canonical_url: "https://www.fignis.io/privacy/" html_url: "https://www.fignis.io/privacy/" markdown_url: "https://www.fignis.io/markdown/en/privacy.md" last_updated: "2026-05-27" --- # Privacy Policy | Fignis > Read how Fignis collects, uses, protects, shares, retains, and deletes account, planning, analytics, and support data. ## Privacy summary Financial planning privacy is different from ordinary website privacy. Your scenarios can reveal income, assets, liabilities, family plans, taxes, goals, and timing decisions. This policy explains what Fignis collects, why we collect it, how we share it, and what choices you have. ## 1. Scope This Privacy Policy applies to the Fignis website, application, APIs, support channels, and related services. It does not apply to third-party websites or services that we do not control. By using Fignis, you understand that we process information as described here. If you use Fignis on behalf of another person or organization, you are responsible for having the right to provide their information. ## 2. Information you provide We collect information you choose to provide, including account details such as email, name, password or sign-in method, profile preferences, support messages, contact-form submissions, and feedback. We also collect planning data you enter into the product, such as scenario names, financial elements, assets, liabilities, income, expenses, members, relationships, tax assumptions, jurisdictions, events, dates, rules, categories, notes, descriptions, projection settings, and generated outputs. ## 3. Google sign-in data If you use Google sign-in, Google provides an ID token that the backend verifies. Depending on Google's response and your account settings, we may receive and store your email, name, profile picture URL, provider identifier, and email-verification status. We use Google sign-in data to authenticate you, create or link your account, display profile information, secure access, and support account recovery. ## 4. Technical data, logs, and telemetry We collect technical data needed to operate and secure the service, such as IP address, browser and device information, pages or routes requested, timestamps, request IDs, response status, performance timing, errors, deployment environment, and trace metadata. The landing site and app may use analytics vendors such as Google Tag Manager and PostHog when configured. Product analytics may include event names, page or route paths, feature areas, scenario or element identifiers, durations, counts, browser context, campaign attribution, and account state. We aim not to send raw financial amounts through analytics events. Session replay is disabled by default in the landing site and app analytics code. If enabled through explicit configuration for diagnostics, it must be treated as sensitive because planning screens can contain personal financial information. ## 5. Cookies and local storage Fignis uses cookies and local storage for essential functions such as sessions, CSRF protection, theme preference, locale preference, attribution, and analytics consent state. When analytics vendors are configured, cookies or local storage may also be used for measurement, attribution, fraud prevention, and product analytics. Where a consent banner or preference control is enabled or required, your choice is stored in the browser. ## 6. How we use information We use information to provide projections and scenario workflows, authenticate users, maintain account security, operate guest and registered accounts, respond to support requests, personalize the interface, debug problems, analyze reliability, improve features, prevent abuse, comply with law, and enforce our terms. We do not use your planning data to sell leads to advisors, lenders, insurers, or advertisers. ## 7. How we share information We share information with service providers that help us operate Fignis, such as hosting, databases, email delivery, authentication, analytics, observability, support, security, and payment processing if paid plans are introduced. We may also share information when required by law, to protect rights and safety, to investigate fraud or abuse, with your consent, or as part of a merger, acquisition, financing, reorganization, or sale of assets. Any successor should continue to protect personal information consistently with this policy unless you agree otherwise. ## 8. Legal bases where required Where laws such as the GDPR require a legal basis, we process personal information based on contract performance, legitimate interests, consent, legal obligations, and, where applicable, protection of vital interests or public-interest obligations. Our legitimate interests include securing the service, preventing abuse, understanding reliability, improving usability, responding to support, and communicating about Fignis. ## 9. Retention and deletion We retain account and planning data while your account is active or as needed to provide the service. We retain logs, telemetry, and support records for security, debugging, legal, and operational purposes for as long as reasonably necessary. Guest accounts are temporary and may be discarded from the product. Registered users may request deletion by contacting us. We may retain limited records where required for legal, tax, security, backup, dispute, or abuse-prevention purposes. ## 10. Your rights and choices Depending on where you live, you may have rights to access, correct, delete, export, restrict, object to, or withdraw consent for certain processing of your personal information. You may update profile information in the app where controls are available, unsubscribe from non-transactional emails, change browser cookie settings, and contact us for privacy requests. We may need to verify your identity before fulfilling a request. ## 11. Children Fignis is not intended for children under 13, and account use is limited to people old enough to agree to our Terms of Service. If you believe a child provided personal information, contact us so we can investigate and delete it where required. ## 12. International processing Fignis and its service providers may process information in countries other than where you live. Those countries may have different data-protection laws. We use service providers and safeguards intended to protect information consistently with this policy. ## 13. Security We use technical and organizational safeguards designed to protect personal information, including production HTTPS, secure cookie settings, CSRF protection, account-scoped authorization patterns, environment-separated auth modes, logging, monitoring, and controlled provider configuration. No online service is completely secure. You can help by using a strong password, protecting your email account, signing out on shared devices, and telling us promptly if you suspect unauthorized access. ## 14. Changes to this policy We may update this Privacy Policy as Fignis changes or legal requirements evolve. We will update the effective date and, for material changes, provide additional notice when appropriate. ## Privacy contact For privacy questions or data requests, email legal@fignis.io