Privacy Policy

Your privacy, plainly stated

Last updated: July 2026

MyFIRE handles financial data — savings, retirement plans, net worth. We take that seriously. This page explains exactly what we collect, what we don’t, and how you stay in control. No legal jargon unless we have to.

You choose how your data is stored

When you save your plan for the first time, MyFIRE asks you to choose one of two storage modes. This choice determines whether your financial data ever leaves your device.

Keep on my device

Maximum privacy

Your plan, inputs, and AI conversation context are stored only in your browser’s local storage and in a file you download. Nothing is sent to MyFIRE’s servers except:

  • AI questions (processed by Anthropic, not stored by MyFIRE)
  • Anonymous usage analytics (GA4, no personal data)

Save to cloud

Most convenient

Your plan and conversation context are stored in Supabase (our database provider) and linked to your account. Protected by row-level security — only your authenticated session can read your data.

What’s stored:

  • Your plan inputs (age, savings, etc.)
  • Saved scenarios
  • Net worth check-in history
  • AI conversation memory (if any)

You can switch between modes anytime — open your account (click your name in the top nav) and go to the Profile tab. You can export and delete your data at any time from the Memory and Plans tabs (see Your rights and controls).

What MyFIRE collects

Account information

When you create an account: email address and password (hashed by our authentication provider, never stored in plain text). Optionally: first name, household type, FIRE style and risk tolerance preferences, income range, and state (used for tax calculations).

Used for: account access, saving your plan, and sending quarterly check-in reminders if you opt in on the Progress tab.

Plan data (cloud mode only)

If you choose cloud storage: your retirement inputs (age, savings, contribution rate, spending goal), saved scenarios, account breakdown, net worth check-in history, and AI conversation memory. Stored in Supabase with row-level security. Never accessed by MyFIRE staff except in response to a support request you initiate.

Usage analytics

Anonymous pageview data via Google Analytics 4. GA4 does not store your full IP address in identifiable form — this is Google’s standard behavior for GA4, not a custom configuration we’ve added. We use this data to understand which features are used and improve the product. No financial data is included in analytics.

Rate limiting

For anonymous users, we store your IP address temporarily in Cloudflare KV to enforce rate limits (5 free AI questions per day). This data expires automatically within 24 hours and is never linked to any personal profile.

What MyFIRE never collects

MyFIRE is not a financial aggregator. We have no connection to your bank, brokerage, or any financial institution. You type in what you want — nothing is ever linked or verified.

How the AI advisor works

When you ask MyFIRE a question, your message — along with the plan context you’ve shared in this session — is sent to Anthropic’s Claude API to generate a response. This is how the AI can answer questions about your specific plan rather than giving generic advice.

What this means for your privacy:

Your conversation is processed by Anthropic’s servers. MyFIRE does not store the text of your conversations on our own servers. Anthropic’s privacy policy governs how they handle API requests — see anthropic.com/privacy.

If you choose cloud storage mode, a summary of key facts from your conversations (like your stated goals or concerns) may be saved to your account to help the AI remember context across sessions. You can view and clear this at any time in the Memory tab.

If you choose local storage mode, this context is saved only in the file you download to your device.

Third parties we work with

Supabase (supabase.com)
Role: Database and authentication (cloud mode only)
What they receive: Your plan data and account information if you choose cloud storage
Anthropic (anthropic.com)
Role: AI API (powers the Ask MyFIRE conversation)
What they receive: Your messages and plan context when you ask a question
Cloudflare (cloudflare.com)
Role: Hosting, CDN, Workers (all users)
What they receive: Standard web traffic data (IP addresses, request logs)
Google Analytics (google.com)
Role: Anonymous usage analytics
What they receive: Anonymized pageview data, no financial information
Stripe (stripe.com)
Role: Payment processing (if premium features are purchased)
What they receive: Payment information — MyFIRE never sees your card number

We do not sell your data to any third party. We do not share your financial data with advertisers. MyFIRE has no advertising business model.

Your rights and controls

You have full control over your data:

Export your data
Download everything MyFIRE has stored about you at any time from the Memory tab → Export my data. You receive a JSON file containing your plan and AI memory context. If you use local storage mode, your downloaded plan file already contains this same information.
Delete your data
Delete your account at any time from the Plans tab → Delete my account. This permanently removes your plan, saved scenarios, chat history, and account from our servers immediately — this cannot be undone.
View and edit your data
Your plan data is always visible and editable in the Inputs tab. Your AI conversation memory is visible in the Memory tab, where you can clear it at any time.
Switch storage modes
Switch between local and cloud storage at any time from your account → Profile tab → Data storage. Switching to local mode stops new data from being stored in the cloud. Existing cloud data is not deleted automatically — use Delete my account if you want full removal.
Opt out of analytics
Use your browser’s privacy settings or an ad blocker to opt out of Google Analytics tracking. MyFIRE continues to work normally without analytics.

How long we keep your data

Account and plan data (cloud mode)
Kept until you delete your account. Inactive accounts (no login for 3 years) may be deleted with 30 days notice to your email address.
Rate limit data (anonymous users)
IP-based rate limit counters in Cloudflare KV expire automatically within 24 hours.
Analytics data
Google Analytics data is retained per Google’s standard retention settings (14 months by default).
Payment records
Stripe retains payment records per their legal obligations. MyFIRE retains only the record of whether a purchase was made (no card details).

Questions or requests

For any privacy-related questions, data requests, or concerns:

Email: hello@planmyfire.org
We respond within 5 business days.

Legal

This privacy policy is governed by the laws of the State of Illinois, United States. MyFIRE is operated by an individual based in Illinois.

Last updated: July 2026
Effective date: June 2026

We may update this policy as the product evolves. Material changes will be communicated via email to registered users. The current version is always at planmyfire.org/privacy/.