How we handle your data

At Benchfolio, operated by Benchfolio LLC, a New York limited liability company (“we”, “our”, “us”), we operate at the intersection of financial analytics and user privacy. Because our platform processes institutional-grade portfolio metrics, a zero-trust data methodology is our absolute priority. This Privacy Policy details precisely what data we collect, how it traverses our systems, and what safeguards we deploy to protect your financial footprint.

• Account & registration data. When you join the waitlist, request support, or register for the dashboard, we collect basic communication primitives such as your email address and preferred display name.
• Financial data & integrations. To generate analytics, the Service requires you to connect your brokerage securely through the SnapTrade API. We process this read-only API data pipeline to synchronize your trading executions, portfolio balances, and asset holdings. We never request, nor do we want, the ability to execute trades or withdraw funds on your behalf.
• Derived portfolio data. We generate and store computed metrics, daily portfolio snapshots (including reconstructed historical snapshots), returns series, risk statistics, and the configurations of any share links you create.
• Shared content. When you create a public share link, the analytics you choose to publish are stored alongside your chosen privacy settings (tabs included, dollar-value visibility, live-update flag, expiration window).
• System usage metrics. We log standard telemetry (IP addresses, browser signatures, request latency, and last-seen timestamps) solely to maintain platform stability, monitor for abuse, and improve the product.

Your data is used strictly to execute the mathematical models that power your dashboard. We use your SnapTrade linkage and transaction history exclusively to calculate your personal Sharpe ratios, drawdown curves, volatility metrics, and holdings analytics, and to populate your personal investment performance dashboard.

We do not sell your data.

We never use your portfolio composition or transaction history to reverse-engineer retail trading sentiment, we do not front-run your data, and we enforce a zero-tolerance policy against selling your profile information, API routing data, or holdings information to ad networks, hedge funds, or third-party marketing brokers. For the avoidance of doubt, California residents may consider this section our affirmative “Do Not Sell My Personal Information” notice — we do not sell personal information, period.

To deliver the Service we rely on a small set of vetted sub-processors. Each has its own terms and privacy policy governing how they handle data we pass to them:

• Supabase — hosted Postgres database and authentication provider. Stores your account record, portfolio snapshots, activities, holdings, and share link configurations.
• Vercel — application hosting, edge functions, and scheduled cron execution.
• SnapTrade — read-only brokerage aggregation. Handles the OAuth-style authentication flow with your broker; we never see your broker credentials.
• Polygon.io — upcoming ex-dividend calendar and market reference data. We query aggregated market data only (ticker-level), not anything linked to you.
• Parqet (assets.parqet.com) — public ticker logo CDN used to render icons in the dashboard and share cards.
• Cloudflare Web Analytics — privacy-respecting, cookieless analytics for aggregate page-view counts. Does not fingerprint visitors or use tracking cookies.

We do not add new sub-processors casually. If we add a material new sub-processor that changes how your data is handled, we will update this list and note the change in the “Last Updated” date.

Benchfolio leverages industry-standard security protocols to defend your data at rest and in transit.

• All ingress and egress traffic is encrypted via TLS.
• Authentication is handled through Supabase Auth with secure session tokens.
• Database access is restricted by row-level security policies so that one user cannot read another user’s portfolio data.
• Third-party brokerage connection tokens are stored as read-only and never include trading or withdrawal authority.
• Sensitive server-side secrets (API keys, service-role credentials) are held in encrypted environment variables and never exposed to the client.

Despite these safeguards, no electronic transmission or cloud storage framework is impervious. We strive to use commercially reasonable means to protect your personal information, but we cannot guarantee absolute security against nation-state actors or zero-day vulnerabilities.

We utilize the secure SnapTrade API to aggregate your external portfolio balances into our analytics engine. When linking an account, your credentials (such as your username and password for Fidelity or Robinhood) are authenticated directly with your broker through SnapTrade’s architecture. Benchfolio’s servers are never exposed to your broker credentials. We receive a read-only token granting us access to the numerical data required to populate your dashboard.

Benchfolio lets you create public share links that expose selected portfolio analytics at a URL of the form /s/[token]. When you create a share link, you understand that:

• The contents of the share are publicly accessible to anyone with the URL. Treat share links the same way you would treat a public tweet.
• You decide which tabs to include, whether to display dollar amounts, whether the share updates live with your portfolio, and when it expires.
• We track aggregate view counts for abuse monitoring, but we do not identify individual viewers or correlate viewers with other Benchfolio accounts.
• Revoking a share link removes the published data from our servers. However, third-party platforms (X/Twitter, LinkedIn, Discord, Slack, iMessage, etc.) commonly cache the Open Graph preview image when a URL is first posted. We have no control over those caches, and previews may continue to display on external platforms until they refresh independently.
• The Open Graph card embedded in link previews is generated server-side and reflects the analytics you chose to expose.

We do not deploy invasive marketing trackers (such as Facebook Pixels, Google Analytics with identifiers, or ad-network beacons) to follow you across the internet. We use only the following client-side storage:

• Authentication session tokens (via Supabase Auth) — required to keep you signed in. Stored in browser storage and transmitted only over TLS to Benchfolio servers.
• Minimal functional cookies — used for server-side session continuity on authenticated requests.
• UI preferences — small values used to remember your last-viewed tab and similar display choices.

Our web analytics provider (Cloudflare Web Analytics) is cookieless and does not fingerprint visitors. We do not use any tracking cookies for advertising.

Benchfolio is not directed to children. In compliance with the Children’s Online Privacy Protection Act (COPPA), we do not knowingly collect personal information from anyone under the age of 13. If we discover that we have collected personal information from a child under 13 without verified parental consent, we will delete that data promptly.

Separately, the Service is intended for adult investors. You must be at least 18 years of age (or the age of majority in your jurisdiction, whichever is higher) to create an account.

Benchfolio operates servers primarily within the United States. If you are accessing the Service from the European Union, the United Kingdom, or any other region with data-protection laws that differ from US law, you consent to the transfer of your personal data to the United States for processing. We extend the substantive rights of the CCPA and GDPR to all users regardless of jurisdiction: the right to access, the right to correct, the right to data portability, the right to opt out of any future data sale (see §3), and the right to erasure (“Right to be Forgotten”).

To exercise any of these rights, contact team@benchfolio.com. We will respond to verifiable requests within the timeframes required by applicable law.

We retain your personal data for as long as your account is active. When you request account deletion, we hard-delete your personal data from our active databases within thirty (30) days of the request. Certain backup systems and operational logs may retain copies for up to an additional 90 days before they are overwritten on normal rotation. We may retain a minimal, anonymized record where required by law (for example, to comply with tax, audit, or anti-fraud obligations).

You have the right to request a copy of the data associated with your account, to correct inaccurate data, to delete your account (see §11), and to object to specific processing activities. You may exercise these rights at any time by emailing team@benchfolio.com. For your protection we may need to verify your identity before acting on a request.

We may update this Privacy Policy as we roll out new analytics modules or adapt to emerging compliance requirements. For material changes (for example, adding a new sub-processor that handles personal data, or changing how we use it), we will notify registered users by email or an in-app notice before the change takes effect. Non-material changes will be reflected by updating the “Last Updated” date at the top of this page.

Questions, concerns, or data-subject requests related to this Privacy Policy can be sent to team@benchfolio.com. The controller of your personal data is Benchfolio LLC, a New York limited liability company.