Security & Data Protection

WhenIm64 is a retirement planning tool. We need enough information to run projections, but we deliberately avoid collecting anything that could be used for identity theft or financial fraud:

• No Social Security number — never asked, never stored
• No bank account or routing numbers
• No credit card numbers — payments are processed by Stripe; we never see your card details
• No driver's license or government ID
• No exact date of birth — we only collect birth month and year
• No street address or ZIP code — we only store your state
• No brokerage login credentials — portfolio connections use SnapTrade's OAuth flow; credentials go directly to your brokerage, not to us

Not all personal information carries the same risk. The National Institute of Standards and Technology (NIST SP 800-122) — the federal standard used by government agencies — distinguishes between sensitive and non-sensitive personal information:

The financial planning data you enter — approximate account balances, income estimates, and expense budgets — does not appear on any federal agency's list of identity theft risk factors. It cannot be used to open accounts, file taxes, or impersonate you. We encourage you to round these numbers to the nearest thousand for your own comfort — the projections work just as well with rounded figures.

• Name — to personalise the experience. You're welcome to use a pseudonym.
• Email — for login authentication and transactional emails (verification codes, action item reminders).
• Birth month & year — to calculate your age for Medicare eligibility (65), Social Security timing (62-70), and RMD start date (73/75). We don't need the exact day.
• State — to estimate state income taxes in your projections. No precise location is stored.
• Biological sex — used only for actuarial life expectancy calculations that determine your planning horizon.
• Financial estimates — approximate account balances, income, and expenses power your retirement projections. Round freely.

• Encryption in transit — all connections use HTTPS/TLS. Data cannot be intercepted between your browser and our servers.
• Encryption at rest — our database (Turso) encrypts all stored data at rest in US data centres.
• Password security — passwords are hashed with bcrypt. We cannot see or recover your password.
• Two-factor authentication — available for all accounts via email OTP or TOTP authenticator apps (Google Authenticator, Authy, etc.).
• No data selling — we do not sell your personal information. Period.
• Payment security — credit card processing is handled entirely by Stripe. Card numbers never touch our servers.
• Brokerage connections — handled through SnapTrade's OAuth flow. Your brokerage credentials go directly to your brokerage, not to us.

When you use AI Help (Premium), we send your first name, birth year, state, and financial planning inputs to Anthropic's Claude API to generate personalised responses. We do not send your full name, email address, exact birth date, or brokerage credentials.

Anthropic does not use API inputs to train their models. See Anthropic's Privacy Policy.

• Update or clear any financial inputs at any time from the Planning page
• Delete all your financial planning data (keep your account) from your Account page
• Delete your entire account and all data permanently — also from your Account page
• Request a full export of your data by contacting us

If you have questions about how your data is protected, please contact us. For our full legal privacy policy, see the Privacy Policy.