Privacy Policy

Overview

WealthDOS is a personal finance tool that runs entirely in your browser. Your financial data never leaves your device. We do not collect, store, transmit, or have access to any of your personal or financial information.

Data Storage

All data you enter into WealthDOS, including expenses, income, portfolio holdings, goals, and settings, is stored exclusively in your browser's local storage. This data exists only on your device and is never sent to any server.

If you clear your browser data, switch browsers, or use a different device, your WealthDOS data will not be available. You can use the export feature in Settings to create a backup file at any time.

No Accounts or Authentication

WealthDOS does not require you to create an account, sign in, or provide any personal information such as your name, email address, or phone number.

External Services

WealthDOS makes requests to third-party APIs solely to display live market data:

• Exchange rate data for currency conversion
• Stock, ETF, and cryptocurrency price quotes

These requests do not include any of your personal or financial data. Only the asset symbols you've added (e.g. "AAPL", "BTC-USD") are sent to retrieve price information. No identifying information is transmitted.

App Lock (PIN)

WealthDOS offers an optional PIN lock to protect access to your financial data. If you choose to set a PIN, it is never stored as plain text. Your PIN is derived using PBKDF2 (Password-Based Key Derivation Function 2) with 100,000 iterations and a cryptographically random salt unique to your device, before being saved to your browser's local storage.

The derivation process is one-way. Your original PIN cannot be recovered from the stored value. The derived key is never transmitted to any server. After 5 incorrect attempts, the app locks for 30 seconds, doubling with each subsequent lockout to prevent brute force attacks. If you forget your PIN, the only option is to clear your browser's local storage, which will also remove all your app data.

Biometric Unlock (Face ID / Touch ID)

WealthDOS offers an optional biometric unlock feature as a convenient alternative to entering your PIN. This feature uses the Web Authentication API (WebAuthn) built into your browser and operating system.

When you enable biometric unlock, a cryptographic key pair is generated and stored securely by your device's platform authenticator (e.g. Secure Enclave on Apple devices, TPM on Windows). WealthDOS only stores a non-sensitive credential identifier in your browser's local storage. Your biometric data (fingerprint, face scan) is never accessed, read, or stored by WealthDOS.

No biometric data is ever transmitted to any server. If you disable biometric unlock, the credential reference is removed from local storage.

Cookies and Tracking

WealthDOS does not use cookies, analytics, tracking pixels, or any form of user tracking. We do not use Google Analytics, Facebook Pixel, or any similar service.

Offline Access

WealthDOS is a Progressive Web App (PWA) that can work offline. A service worker caches the application files on your device to enable offline access. This caching is purely functional and does not involve any data collection.

Data Deletion

Since all data is stored locally on your device, you have full control over it at all times. You can delete all your data from Settings > Delete All Data, or by clearing your browser's local storage.

Children's Privacy

WealthDOS does not knowingly collect any information from anyone, including children under 13. Since no personal data is collected, there is no data to protect under COPPA or similar regulations.

Changes to This Policy

If we make changes to this privacy policy, we will update the date at the top of this page. Since we do not collect email addresses, we cannot notify you directly. We recommend reviewing this page periodically.