Privacy Policy

We collect only what is necessary to provide the service:

• Account information: email address, username, and hashed password. Email is required to create an account and is used for verification, billing, and account recovery. We never store your password in plain text.
• Financial profile data: the retirement planning information you enter — account balances, income, spending estimates, and demographic information (birth year, retirement age). This data exists solely to power your projections.
• Session data: a session token stored in a browser cookie to keep you logged in.

We do not collect behavioral analytics, ad tracking pixels, or third-party cookies.

• To run your retirement projections and display your plan
• To authenticate your account and maintain your session
• To send account verification emails, billing receipts, and service notifications
• To verify you are a human during account creation (via Cloudflare Turnstile)

We do not use your financial data for advertising, profiling, or any purpose other than running the service for you.

We do not sell your data to third parties. We do not share your financial data with any third party for any purpose.

Service providers that process data on our behalf:

• Cloudflare: network routing, DDoS protection, and bot detection (Turnstile). Cloudflare may see your IP address and browser metadata during requests but does not have access to your profile data.
• Stripe (subscribers only): payment processing. Stripe handles all credit card data. We never see or store full payment card numbers.
• Resend: email delivery for account verification and service notifications. Resend sees your email address but does not have access to your financial data.

Your data is stored on servers located in the United States. All data is encrypted in transit using HTTPS/TLS. Passwords are hashed using a strong one-way algorithm (scrypt) and cannot be recovered.

Client-side encryption: when you use the app, your financial profile is encrypted in your browser using AES-256-GCM before being stored locally. Your encryption key is derived from your username and password using PBKDF2 with 310,000 iterations — this key never leaves your browser.

The service is intended for use by residents of the United States only.

ThunderHarbor lets you share your plan via a link. When you create a share link, your profile data is encoded and embedded in the URL. This data is never sent to our servers — it stays in the browser using the URL’s hash fragment. Anyone with the full URL can view your plan data in read-only mode. Do not share the link with anyone you do not trust with your financial information.

You may request:

• Deletion: request permanent deletion of your account and all associated data by emailing [email protected]. We will process deletion requests within 30 days.
• Export: you can export an encrypted backup of your profile at any time from the Settings panel inside the app. The export is encrypted with AES-256-GCM using your password.
• Correction: you can update any data in your profile at any time by editing your profile in the app.

California residents may also exercise rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information is collected and the right to opt out of sale (we do not sell data, so this right is already satisfied).

We use a single session cookie to keep you logged in. This cookie is strictly necessary for the service to function. We do not use advertising cookies, tracking pixels, or analytics cookies. You may clear this cookie at any time by logging out of the app.

We retain your data as long as your account is active. If you request deletion, all data is permanently removed within 30 days. Backup copies may persist in encrypted form for up to 7 days after deletion as part of our disaster recovery process.

We will notify you of material changes by email and by posting a notice inside the app. Continued use after changes constitutes acceptance.

For any privacy questions, concerns, or requests, contact: [email protected]