Privacy Policy
Last updated: November 14, 2025
At Chedr, we take your privacy seriously. This Privacy Policy explains how we collect, use, share, and protect your personal information.
Introduction
Chedr FinanceAI, Inc. ("Chedr," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy describes how we collect, use, share, and safeguard your personal information when you use our website, mobile application, and services (collectively, the "Services").
By using our Services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, do not use our Services.
1. Information We Collect
1.1 Personal Information
We collect information you provide directly to us, including your name, email address, phone number, and financial account information when you connect bank accounts through Plaid.
1.2 Financial Data
When you connect your financial accounts, we collect transaction data, account balances, and account metadata to provide our services. All financial data is encrypted using AES-256-GCM encryption.
1.3 Usage Information
We automatically collect information about how you interact with our services, including device information, IP addresses, browser type, and usage patterns.
1.4 Cookies and Tracking
We use cookies and similar tracking technologies to provide and improve our services, analyze usage patterns, and personalize your experience.
2. How We Use Your Information
2.1 Service Provision
We use your information to provide, maintain, and improve our AI-powered financial services, including transaction categorization, tax optimization, and financial forecasting.
2.2 Communication
We may send you service-related emails, security alerts, and updates about your account. You can opt out of marketing communications at any time.
2.3 Security and Fraud Prevention
We use your information to detect, prevent, and respond to security incidents, fraud, and other malicious or illegal activities.
2.4 Analytics and Improvement
We analyze usage patterns to improve our services, develop new features, and enhance user experience. All analytics are performed on aggregated, de-identified data.
3. Information Sharing and Disclosure
3.1 Service Providers
We share information with trusted third-party service providers who help us operate our business, including Plaid for banking connections and cloud infrastructure providers. All service providers are bound by strict confidentiality agreements.
3.2 Legal Requirements
We may disclose your information if required by law, court order, or government request, or if we believe disclosure is necessary to protect rights, property, or safety.
3.3 Business Transfers
In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information becomes subject to a different privacy policy.
3.4 No Selling of Data
We never sell your personal information or financial data to third parties. Your data is yours, and we are committed to keeping it that way.
4. Data Security
4.1 Encryption
All sensitive data is encrypted both in transit (TLS 1.3) and at rest (AES-256-GCM). We use industry-standard encryption protocols to protect your information.
4.2 Access Controls
We implement strict access controls and authentication mechanisms. Only authorized personnel with legitimate business needs can access your data.
4.3 Security Audits
We conduct regular security audits, penetration testing, and vulnerability assessments. We are SOC 2 Type II certified and maintain compliance with industry security standards.
4.4 Incident Response
We maintain an incident response plan and will notify you promptly in the event of a data breach that affects your personal information.
5. Your Rights and Choices
5.1 Access and Correction
You have the right to access, correct, or update your personal information at any time through your account settings.
5.2 Data Deletion
You can request deletion of your account and personal data at any time. We will delete your data within 30 days, subject to legal retention requirements.
5.3 Data Portability
You have the right to export your data in a machine-readable format. You can request a data export from your account settings.
5.4 Marketing Opt-Out
You can opt out of marketing communications by clicking the unsubscribe link in our emails or updating your communication preferences in account settings.
6. Regulatory Compliance
6.1 GDPR Compliance
For users in the European Economic Area, we comply with the General Data Protection Regulation (GDPR). You have additional rights under GDPR, including the right to object to processing and the right to lodge a complaint with a supervisory authority.
6.2 CCPA Compliance
For California residents, we comply with the California Consumer Privacy Act (CCPA). You have the right to know what personal information we collect, delete your data, and opt out of the sale of personal information (note: we never sell personal information).
6.3 Financial Regulations
We comply with applicable financial regulations, including the Gramm-Leach-Bliley Act (GLBA) and related privacy rules.
You can download a PDF copy of this Privacy Policy for your records. We recommend reviewing it periodically as we may update it to reflect changes in our practices.
Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us:
Email:privacy@opria.com
Address: 123 Financial District, San Francisco, CA 94105
Phone: +1 (555) 123-4567
Download Privacy Policy
Get a PDF copy of our Privacy Policy for your records