Privacy Policy

Last updated: December 18, 2025

1. Introduction

AIXFIN.IO ("AIXFIN," "we," "our," or "us") provides a white-label financial insights platform designed for credit unions and community financial institutions.

We are committed to protecting privacy through data minimization, pseudonymization, and zero-identity-knowledge processing. This Privacy Policy explains how information is handled when you visit our website or when financial institutions use our platform.

2. Our Privacy-By-Design Approach

AIXFIN is designed to process financial behavior without access to personal identity.

We compute what happened (transaction behavior),
but we do not know who did it (identity).

Identity mapping remains exclusively within the financial institution's environment. AIXFIN does not possess the linkage keys required to identify individual members.

3. Information We Collect

3.1 Information You Provide to Us

When you interact with our website or request early access, we may collect:

  • Name
  • Business email address
  • Organization name
  • Job title
  • Communications you send to us

This information is used solely for business communication and onboarding purposes.

3.2 Transaction Data Processed on Behalf of Financial Institutions

When financial institutions use the AIXFIN platform:

  • We do not receive names, email addresses, phone numbers, Social Security numbers, account numbers, card numbers, or physical addresses.
  • Transaction data is pseudonymized by the institution prior to transmission.
  • AIXFIN processes behavioral transaction attributes such as merchant description, transaction amount, time, and category.
  • AIXFIN does not possess the identity linkage key required to associate transaction behavior with a specific individual.
  • The financial institution remains the data controller. AIXFIN acts solely as a data processor.

3.3 Use of Pseudonymized Transaction Data

Pseudonymized transaction data is processed strictly for purposes defined by our institutional partners, including:

  • Generating spending insights and alerts
  • Detecting recurring subscriptions
  • Improving categorization accuracy
  • Enhancing platform performance and reliability

Where permitted by contract, AIXFIN may also use aggregated and non-identifiable outputs derived from pseudonymized data to improve algorithms and platform capabilities.

AIXFIN does not sell transaction data and does not use it for advertising or consumer profiling.

3.4 Automatically Collected Website Information

When visiting our website, we may collect limited technical data, including:

  • Browser and device type
  • IP address (used for security and fraud prevention)
  • Pages visited and referring URLs

This data is used only to operate and improve our website.

4. How We Use Information

We use collected information to:

  • Operate and improve our platform
  • Respond to inquiries and early access requests
  • Communicate service-related information
  • Maintain platform security
  • Comply with legal obligations

5. Information Sharing

We do not sell personal information.

Information may be shared only with:

  • Service providers supporting hosting, monitoring, or communications
  • Legal authorities when required by law
  • Successor entities in the event of a merger or acquisition
  • With consent, where explicitly provided

All service providers are contractually required to protect data confidentiality.

6. Data Security

AIXFIN employs layered security controls aligned with financial-industry expectations, including:

  • Encryption in transit and at rest
  • Strong access controls and audit logging
  • Tenant isolation using database-level enforcement
  • Ephemeral, serverless compute environments
  • Continuous monitoring and security reviews

7. Data Retention

Business contact information is retained only as long as necessary for communication or onboarding.

Pseudonymized transaction data retention is governed by contractual agreements with financial institutions.

Aggregated, non-identifiable insights may be retained for analytical purposes.

8. Your Rights

Depending on jurisdiction, individuals may have rights to access, correct, or delete personal information provided directly to AIXFIN (such as contact details).

Requests related to financial transaction data should be directed to the individual's financial institution, which controls identity mapping.

9. Cookies and Tracking

Our website uses cookies necessary for basic functionality and analytics. You may control cookies through browser settings.

10. Children's Privacy

Our services are intended for financial institutions and are not directed to individuals under 18.

11. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be posted on this page with an updated effective date.

12. Contact Us

For privacy-related questions, contact:

AIXFIN.IO
Email: