Privacy Policy

Effective Date: February 9, 2026

Last Updated: February 9, 2026

Aibillity LLC ("Bacos," "we," "us," or "our") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our financial AI service and website.

1. Information We Collect

1.1 Information You Provide

Account information (name, email address, password)
Financial institution credentials (securely handled through Plaid)
Communication preferences and support requests
Payment information (processed through our payment providers)

1.2 Financial Data

When you connect your financial accounts through Plaid, we collect:

Account balances and transaction history
Account holder information
Institution names and account types

We never see or store your banking credentials. Plaid securely handles authentication.

1.3 Automatically Collected Information

Device information (IP address, browser type, operating system)
Usage data (pages visited, features used, time spent)
Log data and analytics information
Cookies and similar tracking technologies

2. How We Use Your Information

We use your information to:

Provide, maintain, and improve our AI financial services
Generate personalized insights, budgets, and recommendations
Process transactions and send service-related communications
Respond to your requests and provide customer support
Detect, prevent, and address fraud, security issues, or technical problems
Comply with legal obligations and enforce our Terms of Service
Conduct research and analytics to improve our services (using aggregated, anonymized data)
Send marketing communications (only with your consent, which you can withdraw anytime)

3. How We Share Your Information

We do not sell your personal information. We may share your information with:

3.1 Service Providers

Plaid (financial data aggregation)
Cloud hosting providers (AWS, Vercel)
Payment processors (Stripe)
Analytics providers (limited, anonymized data only)
Customer support tools

All service providers are bound by strict data protection agreements.

3.2 Legal Requirements

We may disclose your information if required by law, court order, or government regulation, or to protect our rights, safety, or property.

3.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

4. Data Security

We implement industry-standard security measures to protect your information:

End-to-end encryption for data in transit (TLS/SSL)
Encryption at rest for stored data (AES-256)
Secure authentication via NextAuth.js with OAuth 2.0
Regular security audits and vulnerability assessments
Strict access controls and monitoring
Bank-level security standards and compliance

However, no system is completely secure. While we strive to protect your information, we cannot guarantee absolute security.

5. Data Retention

We retain your personal information for as long as your account is active or as needed to provide services. After account deletion, we may retain certain information for legal compliance, fraud prevention, or legitimate business purposes. Financial transaction data is typically retained for 7 years in compliance with financial regulations.

6. Your Rights and Choices

Depending on your location, you may have the following rights:

6.1 Access and Portability

Request a copy of your personal information in a portable format.

6.2 Correction

Update or correct inaccurate information through your account settings.

6.3 Deletion

Request deletion of your personal information, subject to legal retention requirements.

6.4 Opt-Out

Opt out of marketing communications or certain data processing activities.

6.5 California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act, including the right to know what personal information is collected, used, shared, or sold, and the right to delete personal information.

6.6 European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have rights under GDPR including data portability, restriction of processing, and the right to object to processing.

To exercise any of these rights, contact us at [email protected]

7. Cookies and Tracking

We use cookies and similar technologies for:

Authentication and session management
Security and fraud prevention
Analytics and performance monitoring
Personalization and preferences

You can control cookies through your browser settings, but disabling cookies may affect functionality.

8. Third-Party Links

Our service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

9. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses and adequacy decisions.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through our service. Your continued use of Bacos after changes take effect constitutes acceptance of the updated policy.

12. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us:

Aibillity LLC

Email: [email protected]

Support: [email protected]

Website: bacos.ai

View Terms of Service Back to Home