Privacy Policy
Last updated: July 2026
What Pipit collects
Pipit is a personal finance tool. To do its job it stores: your name and email address; account information and transaction history for financial accounts you connect or enter manually; budgets, goals, rules, and tags you create; and security metadata (hashed passwords, optional two-factor secrets, login attempt counters).
Bank connections (Plaid)
When you link a bank account, you do so through Plaid, which collects your financial institution credentials directly — Pipit never sees or stores your bank username or password. Plaid provides Pipit with account balances, transactions, and investment holdings. Plaid's handling of your data is described in the Plaid End User Privacy Policy. Access tokens for your bank connections are stored encrypted (AES-256-GCM) at rest.
Third-party services
Pipit uses Supabase (database hosting), Netlify (application hosting), Twelve Data (market price data for securities you hold — only ticker symbols are shared, never your identity or amounts), and Resend (transactional email such as verification and password-reset messages).
Cookies
Pipit uses a single session cookie to keep you signed in. There are no advertising or tracking cookies, no analytics scripts, and no third-party trackers.
What Pipit does NOT do
Your financial data is never sold, rented, shared with advertisers, or used for any purpose other than showing it back to you. Data you share with a household is visible only to the members of that household, and only for the accounts and goals you explicitly mark as shared.
Data deletion
You can disconnect bank connections at any time from Settings → Institutions, which revokes Pipit's access at Plaid. To delete your account and all associated data entirely, contact us at the email address below and we'll complete the deletion within 30 days.
Contact
Questions about this policy: benjamin.kadison@gmail.com