Privacy Policy

2. Data We Collect

We collect only the minimum data necessary to provide our retirement planning service:

• Account Information: Email address, account creation date, verification status
• Profile Data: Age, current city, desired retirement age, family size, risk tolerance
• Financial Information: Aggregated financial data (asset values, liability amounts, monthly expenses) entered by you in rounded numbers
• Scenario Data: Your retirement planning scenarios, calculations, and AI-generated recommendations
• Technical Data: Browser type, IP address, access times, pages viewed (via Google Analytics)

3. Data We DO NOT Collect

We deliberately avoid collecting sensitive identifiers and credentials:

• PAN (Permanent Account Number)
• Aadhaar number
• Bank account numbers or IFSC codes
• Credit or debit card numbers
• Net-banking credentials or passwords
• UPI PINs or payment passwords
• Brokerage or investment account logins
• Specific investment holdings or transactions

4. How We Use Your Data

We use your data for the following purposes:

• Service Delivery: To calculate your retirement readiness, generate projections, and provide AI-powered recommendations
• Account Management: To create and maintain your account, verify your email, and enable login
• Product Improvement: To analyze usage patterns and improve our calculation models and user experience
• Communication: By creating an account, you consent to receive essential service communications via email, including account notifications, security alerts, verification emails, and important platform updates. We may also send educational content and retirement planning tips, which you can opt-out of at any time through your account settings or by using the unsubscribe link in any email
• Legal Compliance: To comply with applicable laws and respond to lawful requests

5. Data Storage & Security

Indian Data Residency: All personal data is stored on Google Cloud Platform servers located in India (asia-south1, Mumbai region) to comply with data localization requirements.

Security Measures:

• Data encryption in transit (HTTPS/TLS) and at rest
• Firebase Authentication for secure user management
• Role-based access controls and audit logging
• Regular security reviews and updates
• Firestore security rules to prevent unauthorized access

6. Data Sharing & Third Parties

We do NOT sell your personal data. We share data only with trusted service providers necessary to operate our platform:

• Google Cloud Platform: Hosting, database (Firestore), and authentication services
• Google Gemini AI: For generating personalized retirement recommendations (anonymized scenario data only)
• Google Analytics: For understanding website usage and improving user experience
• Vercel: For hosting and content delivery

These providers are contractually bound to protect your data and use it only for providing their services to us.

7. Your Rights (DPDP Act Compliance)

Under India's Digital Personal Data Protection Act, 2023, you have the following rights:

• Right to Access: Request a copy of your personal data we hold
• Right to Correction: Update or correct inaccurate information (available in your dashboard)
• Right to Deletion: Request deletion of your account and all associated data
• Right to Data Portability: Request your data in a portable format
• Right to Withdraw Consent: Withdraw consent for data processing at any time
• Right to Grievance Redressal: Raise concerns about data handling

To exercise these rights, contact us at: hello@caniretire.in

8. Data Retention

We retain your data only as long as necessary:

• Active accounts: Data is retained while your account is active
• Inactive accounts: After 24 months of inactivity, we may delete your scenarios (with prior notice)
• Deleted accounts: Upon deletion request, we remove your data within 30 days (except as required by law)
• Aggregated analytics: Anonymized, non-identifiable usage statistics may be retained indefinitely

9. Email Communications

By registering on CanIRetire.in, you agree to receive email communications from us:

• Essential Emails (cannot be opted out): Email verification, password resets, security alerts, critical service announcements, account status updates, and legally required notices
• Transactional Emails (cannot be opted out): Scenario completion confirmations, calculation results, and service-related notifications
• Educational Emails (can be opted out): Retirement planning tips, platform feature updates, and helpful financial content. You can unsubscribe from these at any time

Managing Preferences: You can manage your email preferences in your account settings or use the unsubscribe link in any non-essential email. We will never spam you or sell your email address to third parties.

10. Cookies & Tracking

We use the following cookies and tracking technologies:

• Essential Cookies: Required for authentication and core functionality (Firebase Auth tokens)
• Analytics Cookies: Google Analytics to understand usage patterns (anonymized)

You can disable cookies in your browser settings, but this may affect functionality.

11. Children's Privacy

CanIRetire.in is not intended for individuals under 18 years of age. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected data from a minor, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or a prominent notice on our website. Your continued use of the service after changes constitutes acceptance of the updated policy.

13. Contact Us

For privacy-related questions, concerns, or requests:

Email: hello@caniretire.in

Data Protection Officer: (to be designated as per DPDP Act requirements)

14. Governing Law

This Privacy Policy is governed by the laws of India. Any disputes shall be subject to the exclusive jurisdiction of courts in Bangalore, Karnataka, India.