Your Privacy,
Our Commitment

We collect information to provide and continuously enhance our AI-powered financial analysis services:

• Personal Information: Name, email address, phone number, and professional details captured during early access registration.
• Financial Documents: Bank statements, investment records, tax returns, and other uploads required for in-depth analysis.
• Usage Data: Feature interactions, time on page, and workflow context that help us refine the product experience.
• Technical Information: IP addresses, device details, and security logs used to secure and monitor our infrastructure.
• Communication Records: Support conversations, client feedback, and advisory sessions managed by our team.

Your information powers every secure workflow inside Thrive Financial:

• AI Analysis: Advanced models process your financial data to surface assets, anomalies, and actionable insights.
• Service Delivery: Tailored financial intelligence reports and recommendations drive your case strategy.
• Platform Improvement: Aggregated usage trends inform user experience upgrades—never raw documents.
• Communication: Critical alerts, security notices, and support responses reach you without delay.
• Compliance: Audit-ready records ensure we satisfy regulatory and professional obligations.

We deploy enterprise safeguards that meet—and exceed—industry standards:

• End-to-End Encryption: AES-256 encryption protects data in transit and at rest.
• Zero-Knowledge Architecture: Internal teams cannot access your raw financial documents.
• Secure Infrastructure: Hosted within SOC 2 Type II facilities with 24/7 security monitoring.
• Access Controls: Enforced multi-factor authentication and granular role permissions.
• Regular Audits: Quarterly third-party penetration testing and compliance reviews.

We never sell your data. Limited sharing happens only when essential:

• Service Providers: Vetted partners who power secure hosting, analytics, and support.
• Legal Compliance: Required disclosures to satisfy lawful requests or protect rights.
• Business Transitions: Successor entities must honor this policy during mergers or acquisitions.
• User Consent: Explicit authorization you provide for designated third parties.
• Emergency Situations: Actions that prevent fraud or imminent harm.

You remain in control of your personal information at all times:

• Access: Request a complete export of the personal data we maintain.
• Correction: Update or amend inaccurate account information.
• Deletion: Ask us to remove your account and purge associated data (subject to legal holds).
• Portability: Receive machine-readable copies of your data for reuse elsewhere.
• Preferences: Opt out of marketing or restrict processing in specific scenarios.

Retention schedules balance product utility with regulatory compliance:

• Active Accounts: Core profile and usage data retained while your subscription remains open.
• Financial Documents: Stored securely for analysis and legal record keeping (typically 7 years).
• Support Records: Tickets and communication logs preserved for 36 months.
• Deleted Accounts: Most data is purged within 30 days of confirmed closure.
• Regulatory Obligations: Certain records may persist longer to satisfy statutory requirements.

When our practices change, you stay informed:

• Notification: Significant revisions are shared via email and in-product alerts.
• Review Window: Material updates include a 30-day review period before enforcement.
• Version History: Past policy versions remain available upon request for reference.
• Ongoing Consent: Continued platform use confirms acceptance of updated terms.
• Direct Support: Contact our privacy team with questions about any change.