Your data is your data.

HELM is a personal command center for your wealth. We hold sensitive financial information in trust, and we treat that responsibility seriously. This policy is a plain-English description of what we collect, how we use it, who else processes it, and how you control it.

Effective May 4, 2026

Controller Vantage Digital LLC, Texas, USA

Contact privacy@atthelm.com

1. Who we are

HELM is operated by Vantage Digital LLC, a Texas limited liability company. HELM is software — it is not an investment advisor, broker-dealer, CPA, or attorney. Nothing in HELM constitutes investment, tax, or legal advice. See our Terms and Disclosures for the full statement.

2. What we collect

Account information

When you sign up, we collect: email address, name (optional), password (hashed by our auth provider — we never see plaintext), Stripe customer ID, billing tier, and account-creation timestamps.

Financial data you enter

HELM is manual-first. Everything below is data you type or upload — we do not connect to your brokerage, bank, or wallet via aggregators. Nothing is fetched from third parties on your behalf.

Accounts: account name, institution, account type (taxable, IRA, Roth, 401(k), HSA, crypto, real estate, vesting, private), market value snapshots.
Holdings: ticker, asset class, quantity, cost basis, current value, sector, notes.
Transactions: type (buy, sell, dividend, deposit, etc.), date, quantity, price, amount, notes.
Vesting grants: employer, grant type (RSU/ISO/NSO/PSU), shares, vesting schedule, strike price.
Real estate & private investments: property descriptions, valuations, debt, cap-table entries.
Insurance & beneficiaries: policy types, carrier names, coverage amounts, beneficiary names and relationships.
Documents (Document Vault): files you upload — wills, trust docs, K-1s, statements. Stored encrypted at rest.
CSV imports: when you upload a Schwab/Fidelity/Vanguard/E*TRADE/IBKR/Coinbase statement, the file is parsed in-memory and the extracted holdings/transactions are inserted into your account. The original CSV file itself is never stored.

AI chat history

When you use Ask HELM, we store: your prompt, the AI response, a thread ID, and an optional thread title you can rename or pin. AI threads are retained for 60 days for context continuity, then automatically pruned unless you pin them.

Usage telemetry

Standard server logs (IP address, user-agent, timestamp, requested route, response status). Used for security, debugging, and abuse detection. Logs are retained for 30 days.

Billing data

Handled directly by Stripe. We receive a customer ID, subscription status, last-4 of your card, and billing country — but never your full card number. Stripe is the controller of your payment-method data; their privacy policy applies.

3. How we use your data

Provide the service. Render your dashboard, run the Tax Brain calculator, generate PDF reports, deliver weekly insight emails.
AI insights. Send anonymized portfolio context to our AI sub-processor to generate Ask HELM responses, weekly digests, and Tax Brain rationale.
Customer support. Reply to questions; we will only access your data when you ask us to.
Abuse prevention. Detect credential stuffing, scraping, rate-limit abuse.
Legal compliance. Respond to lawful court orders or regulatory requests.

What we never do: sell your data, share it with advertisers, train public AI models on it, or use it to build aggregated marketing audiences.

4. Sub-processors

HELM is built on a small, deliberately-chosen stack. These are the only companies that touch your data:

Sub-processor	Purpose	Data touched	Region
Supabase	Authentication (email + Google OAuth), JWT signing	Email, hashed password, OAuth ID	US
Neon	Postgres database (encrypted at rest)	All financial data, AI chat history	US
Anthropic	Claude AI (Ask HELM, Tax Brain, weekly digests)	Per-request portfolio context + your prompt	US
Stripe	Payments & subscription billing	Email, name, card data (held only by Stripe)	US
Brevo	Transactional email (welcome, weekly digest, receipts)	Email, first name, message body	EU
Netlify	Hosting, edge CDN, serverless functions	Standard server-log data	US
Namecheap	Domain registrar (atthelm.com)	None — DNS only	US

Anthropic does not retain prompts or train on HELM data per our enterprise terms. Neon and Supabase encrypt all data at rest; both undergo independent SOC 2 Type II audits. We update this list whenever a sub-processor changes — see Security for the live record.

5. AI processing — important detail

What we send to Anthropic: when you ask Ask HELM a question, we send your prompt plus a JSON snapshot of your current portfolio (account names, holdings, transactions, vesting grants, properties, insurance) to Anthropic's Claude API. We do not send your real name, address, social security number, or document files. The snapshot is processed and returned in real time and is not stored by Anthropic. Your prompt and the response are stored in our database for thread continuity (60 days unless pinned).

6. Your rights

Depending on where you live, you have some or all of the following rights. We honor them globally regardless of your jurisdiction.

Access & portability. Export everything via Settings → Export Data (JSON). Includes accounts, holdings, transactions, vesting, insurance, beneficiaries, AI chat history.
Correction. Edit any record yourself in the dashboard.
Deletion. Delete your account from Settings → Delete Account, or email privacy@atthelm.com. We delete within 30 days. Backups roll off within 90 days.
Restriction & objection. Email us to opt out of any processing other than service delivery and legal compliance.
Marketing opt-out. Every email has a one-click List-Unsubscribe header.
Withdraw consent. If we relied on consent for any processing (e.g., optional AI features), you can withdraw it at any time without affecting service.
Lodge a complaint. EU/UK residents may complain to their local data protection authority. California residents may complain to the California Privacy Protection Agency.

To exercise any right, email privacy@atthelm.com from the address on your account. We respond within 30 days (typically faster).

7. Retention

Financial data: retained until you delete the record or your account.
AI chat: 60 days unless pinned.
Server logs: 30 days.
Billing records: 7 years (US tax-record retention requirement).
Backups: 90 days rolling.

8. Security

Encryption at rest (AES-256 via Neon Postgres), TLS 1.3 in transit, per-tenant row-level security via Supabase JWT scoping, MFA available on every account, SECRETS_SCAN on every deploy, monthly dependency audits, and a private bug-bounty channel. Full disclosure on the Security page.

9. International transfers

Most processing happens in the United States. Brevo (transactional email) is in the EU. Where data crosses borders, we rely on Standard Contractual Clauses or equivalent safeguards approved by the European Commission and the UK ICO.

10. Children

HELM is for adult investors. We do not knowingly collect data from anyone under 18. If you believe we have, email us and we will delete it.

11. Changes

We will notify you by email at least 14 days before any material change to this policy. Non-material changes (typo fixes, contact updates) take effect on posting. The "Effective" date at the top is always current. Past versions are archived in our public repository.

12. State-specific notices

California (CCPA / CPRA)

In the past 12 months, we collected the categories listed in §2 above. We sold no personal information and shared none for cross-context behavioral advertising. California residents may exercise the access, deletion, correction, and limit-the-use-of-sensitive-PI rights described in §6, plus the right to non-discrimination for exercising any right.

Colorado, Connecticut, Virginia, Utah

We comply with each state's comprehensive privacy law. Rights and contact methods are equivalent to those described above.

EU / UK / Switzerland (GDPR)

Vantage Digital LLC is the controller. Lawful bases: contract performance (account, billing, service delivery), legitimate interest (security, abuse prevention), consent (optional AI features). EU residents may contact a data protection authority in their state.

13. Financial-data specific (GLBA-aligned)

Although HELM is not a regulated financial institution, we voluntarily align our practices with the spirit of the Gramm-Leach-Bliley Act and NY DFS Part 500: a written information security program, designated security lead, vendor due-diligence (sub-processor list above), encryption, MFA, incident response plan, and an annual review.

Questions?

Email privacy@atthelm.com. For security concerns, see /.well-known/security.txt.

Vantage Digital LLC · Texas, United States