Your data is yours.
We just help you understand it.
Financial data is among the most sensitive information that exists. Stackr treats it that way — read-only, encrypted, auditable, and never sold.
We can see your data. We cannot touch your money.
AES-256 at rest. TLS 1.3 in transit. Always.
No ads. No data brokers. No exceptions.
Security controls, in depth.
All data encrypted in transit (TLS 1.3) and at rest (AES-256). Bank credentials never touch our servers.
Bank connections use Plaid — the same infrastructure trusted by Venmo, Cash App, Robinhood, and thousands of fintech companies.
Stackr can see balances and transactions. It cannot move, transfer, or modify your money. Ever.
Every database query is scoped to your household ID. No user can ever see another user's data.
OAuth tokens from Plaid and other providers are encrypted with a separate key before storage.
Every sensitive action — login, account linking, admin access — is logged with timestamps and IP addresses.
Delete your account and every trace is permanently removed within 30 days. No backups retained.
Stackr is a subscription product. No ads, no data brokering, no incentive to sell your information.
How account linking works.
When you connect a bank account, you authenticate directly with your bank through Plaid's secure interface. Your login credentials are never sent to Stackr — Plaid handles the authentication and returns a read-only token.
Plaid is used by Venmo, Cash App, Robinhood, and thousands of other financial applications. They're regulated and audited to the highest standards.
What we collect and why.
We do not collect Social Security numbers, tax documents, or investment credentials.
Security questions or concerns?
Email security@stackr.app. We respond to all security-related inquiries within 24 hours.