BankBridge

Privacy Policy

Last updated 2026-04-18

Your transactions live in Plaid. We never store them. Every question your agent asks re-fetches from Plaid in real time. Sign out, cancel, delete your account — and there’s nothing of you left on our servers except the single access token we need to call Plaid on your behalf. Cancel, and even that’s gone within seconds.

What we store

Your email address (for account login). Your Plaid access token, encrypted at rest with AES-256-GCM. Your Stripe customer and subscription IDs. API keys you create (stored as SHA-256 hashes — we can’t recover them, only validate them). That’s it.

What we never store

Your accounts. Your balances. Your transactions. Your holdings. Your investment history. Any derived aggregation, summary, or categorization of your financial data. None of it. Ever.

How queries work

Every time your agent asks a question — “how much did I spend on restaurants last month?” — BankBridge calls Plaid live, passes the answer back to your agent, and forgets it. No caching layer. No query log. No record of what you asked or what we returned.

Read-only access

Plaid itself is read-only. Even if we went rogue, we couldn’t move money, initiate transfers, or change anything about your accounts. We can only look.

Retention on cancel

When you cancel your subscription or delete your account: your Plaid access tokens are revoked with Plaid (via itemRemove), your connection rows are deleted from our database, and a small audit row is retained (timestamp + reason) for billing reconciliation. No financial data is retained because we never stored any.

Encryption

Plaid access tokens are encrypted at rest with AES-256-GCM. All traffic to and from bankbridge.money uses TLS 1.3. Between our servers and Plaid: Plaid’s own TLS and authenticated-API layer.

What we don’t do

We don’t sell your data. We don’t share it with advertisers. We don’t use it to train models. We don’t have ads. Our only revenue is your $5/month per connected bank.

Third parties

We use Plaid to connect to your banks, Stripe to process payments, and Resend to send emails (magic links, payment-failure notices, reconnect prompts). Each processes data only as needed to provide their service.

Your control

Delete your data or close your account anytime from settings. This cancels your subscription, revokes every bank connection, and removes the last trace of you from our database.

Questions? support@bankbridge.money.