Your data. Your money. Your call.

Beaverise Inc. ("Beaverise", "we", "us", "our") is a Canadian fintech company that provides an AI-powered personal finance application. We take your privacy seriously and we are committed to handling your information transparently, responsibly, and in line with Canadian privacy law, including the Personal Information Protection and Electronic Documents Act (PIPEDA) and Quebec’s Law 25.

This Privacy Policy explains what information we collect, how we use it, who we share it with, and the rights you have over it. By using Beaverise, you agree to the practices described here.

Account information: name, email address, phone number, date of birth, postal code, language preference, and authentication credentials provided through our identity provider.

Financial information: account balances, transactions, account holders, and institution metadata that we receive from your linked bank or credit accounts through Plaid. We do not store your bank login credentials. Plaid handles the connection on a read-only basis.

Usage information: pages or screens you visit, features you use, time spent in the app, device type, operating system, app version, language, and approximate location derived from your IP address.

Device and technical information: device identifiers, crash logs, performance traces, and security signals required to keep your account safe.

Communications: messages and feedback you send to our support team, plus the contents of conversations you have with the Beaver AI assistant inside the app.

Optional uploads: documents, receipts, leases, warranty cards, and policies that you choose to upload to your Vault.

To deliver the Beaverise service, including aggregating your financial data, building budgets, generating debt payoff plans, running tax calculations, and producing personalized insights.

To operate the Beaver AI assistant, including processing your questions and generating responses that reference your real financial context.

To provide customer support, respond to inquiries, and send transactional notifications such as bill reminders, security alerts, and account confirmations.

To improve the product, including diagnosing bugs, measuring feature performance, and developing new capabilities.

To detect and prevent fraud, protect against unauthorized access, and meet our regulatory obligations.

To send marketing communications when you have explicitly opted in. You can withdraw your consent at any time.

When you interact with Beaver AI, your queries and the relevant slice of your financial data are sent to one or more AI model providers we work with so they can generate a response. We have data processing agreements in place with each provider that prohibit them from training on your data or retaining it beyond what is required to return a response.

We never sell your data to AI providers or anyone else. AI outputs are filtered through our own safety guardrails before they reach you, and any action taken on your behalf (such as moving money) requires explicit confirmation and a hard daily limit.

Service providers that help us operate Beaverise, including infrastructure hosts, identity providers, customer support tools, analytics, and AI model providers. Each is bound by contractual confidentiality and data protection terms.

Plaid, our open banking partner, which connects your bank accounts on your behalf. Plaid’s use of your information is governed by its own privacy policy at plaid.com/legal.

Authorities or regulators, when we are legally required to disclose information by valid Canadian law enforcement order, court order, or regulatory request.

An acquirer or successor entity, in the event of a merger, acquisition, or asset sale. If that ever happens, we will let you know in advance and your data will continue to be protected by this Privacy Policy or one materially similar to it.

We do not sell your personal information to advertisers or data brokers. Ever.

Your personal information is stored in Canadian data centres operated by enterprise cloud providers. Backups and disaster recovery copies are also kept in Canadian regions where reasonably possible.

Some service providers we work with, including AI model providers, may process your data outside Canada. When that happens, we use contractual safeguards approved under PIPEDA to ensure your data receives an equivalent level of protection.

We use AES-256 encryption at rest and TLS 1.2 or higher in transit. Sensitive credentials are stored in hardware-backed key management systems.

We follow the principle of least privilege internally, log and monitor administrative access, and run regular security testing. No system is perfectly secure, but we hold ourselves to a high standard and continuously raise it.

If we ever experience a security incident that affects your information, we will notify you and the appropriate regulators promptly, in line with our legal obligations.

We retain your personal information for as long as your account is active and for a reasonable period after closure to comply with legal, accounting, and audit requirements. Typical retention periods range from 30 days for transient logs to seven years for financial records that we are legally required to keep.

When the retention period ends, your information is permanently deleted or anonymized.

You have the right to access the personal information we hold about you, request a copy of it in a portable format, ask us to correct anything that is inaccurate, and ask us to delete your account and the associated data.

You can exercise these rights at any time from inside the app under Settings, or by emailing privacy@beaverise.com. We will respond within 30 days.

Quebec residents have additional rights under Law 25, including the right to object to automated decision-making and request a review by a human. You can ask us to do that at the same email address.

Beaverise is not directed at children under 16. We do not knowingly collect personal information from children. If you believe a child has signed up for Beaverise, please contact us and we will delete the account.

Our website uses a small number of essential cookies to operate the site, plus optional analytics cookies that help us understand which pages people read. You can decline non-essential cookies through the cookie banner without losing access to any functionality.

We may update this Privacy Policy from time to time. When we do, we will update the “last updated” date at the top, and for material changes we will notify you in the app or by email at least 30 days before the change takes effect.

If you have a question, complaint, or concern about how we handle your personal information, you can reach our Privacy Officer at privacy@beaverise.com. We aim to acknowledge every request within two business days.

You can also contact the Office of the Privacy Commissioner of Canada at priv.gc.ca, or, if you reside in Quebec, the Commission d’accès à l’information at cai.gouv.qc.ca.