pocketwatch

legal / privacy

Privacy Policy.

Pocketwatch is a product of Couthless Inc. ("Couthless," "we," "us"). This Policy explains what we collect, how we use it, who we share it with, how long we keep it, and the rights you have over your data — written in plain English, with the lawyer bits on the side.

Effective April 30, 2026 · v1.0
/01

Summary

You connect a brokerage account (today: Robinhood and Coinbase) through Plaid. We receive a read-only feed of your balances, positions, and transactions. We compute your profit-and-loss, store it for the duration you're a user, and show it — or specific portions of it — in group chats you choose to share with. We do not sell your data, we cannot trade on your behalf, and you can delete everything at any time.

What we collect
Account balances, positions, transactions, and profile info you give us.
What we don't
Your brokerage password. Your social security number. Your trading authority.
Who sees it
Only you, and the friends in chats you explicitly add Pocketwatch to.
How long
While you're an active user, plus a short retention tail (see §06).
/02

Data we collect

Account & identity

When you sign up, we collect your email address, a chosen username/handle, and (optionally) a display name and avatar. If you sign in via Apple or Google, we receive the email and opaque user identifier those providers send us — nothing more.

Brokerage data, via Plaid

When you link a brokerage, Plaid Inc. authenticates you directly with the institution and returns a read-only access token to us. Using that token, we fetch:

  • Account metadata (institution name, account type, masked account number)
  • Balances (cash and securities)
  • Holdings (tickers, quantities, cost basis when available)
  • Transactions (buys, sells, dividends, transfers — timestamps and amounts)

We do not receive your brokerage username or password. Plaid holds those credentials on its own infrastructure under its own end-user privacy policy.

Chat & sharing data

When you add the Pocketwatch agent to a group chat (iMessage, WhatsApp, or Discord), we collect the minimum needed to post there: a chat identifier, the handles of members who interact with the bot, and the contents of messages directed to or triggered by the bot. We do not read or store messages unrelated to Pocketwatch.

Device & usage data

We log standard server-side telemetry: IP address, user agent, timestamps, error traces, and product events (e.g. "user opened leaderboard"). This data is used for security, debugging, and aggregate product analytics.

/03

About Plaid specifically

Plaid Inc., 1098 Harrison Street, San Francisco, CA 94103, is the financial-data-aggregation provider we use to connect to your brokerage. Plaid is a separate company and a data processor for us under most US privacy laws.

  • Plaid handles authentication; your brokerage credentials never touch our servers.
  • Plaid issues us a token scoped to balances, holdings, and transactions only — never trading authority.
  • We do not receive Plaid's user-facing analytics or telemetry about you.
  • If you disconnect a brokerage in Pocketwatch, we revoke the corresponding Plaid token immediately.

You can review and revoke Plaid connections directly at my.plaid.com. Doing so will sever Pocketwatch's ability to refresh your data; we recommend also deleting the connection in Pocketwatch so we know to clear the cached records.

/04

How we use your data

  • Compute realized and unrealized PnL across the brokerages you link.
  • Maintain group leaderboards for the chats you participate in.
  • Post trade-event cards to chats where the agent is installed and you have not opted out.
  • Operate the service: authenticate you, prevent abuse, debug crashes, send transactional email (e.g. magic-link sign-in, security alerts).
  • Improve the product through aggregated, de-identified usage analytics.

We do not use your data to train machine-learning models for external customers. We do not run advertising, and we do not sell, rent, or trade your personal information for money or other valuable consideration.

/05

Who we share data with

Plaid
To authenticate you and fetch read-only brokerage data. See §03.
Cloud infrastructure
Amazon Web Services (US-East) hosts our servers and encrypted databases under a standard data-processing agreement.
Email & auth
Resend (transactional email) and Clerk (authentication) under data-processing agreements.
Analytics
PostHog (self-hosted) for product analytics. No third-party advertising trackers.
Your chat platforms
When the agent posts to iMessage, WhatsApp, or Discord, the relevant platform sees and stores those messages under its own policies.
Legal
We will disclose data when compelled by valid legal process. We will fight overbroad requests and notify you when legally permitted.

We never share your data with friends, group chats, or the public unless you explicitly choose to share it. You control what each chat sees on a per-trade and per-account basis.

/06

How long we keep it

Brokerage data (balances, holdings, transactions)
Kept for as long as your account is active. Refreshed continuously; older snapshots pruned after 25 months.
Computed PnL & leaderboard history
Retained for 25 months so historical leaderboards remain meaningful, then aggregated.
Chat agent activity
Posted cards and bot-directed messages: 90 days, then deleted.
Account & profile
Until you delete your account.
Server logs & telemetry
30 days, then deleted.
Backups
Encrypted backups roll off automatically within 35 days.
Post-deletion tail
When you delete your account, we erase personal data within 30 days. We may retain minimal records (e.g. a hashed email) longer where required by law (tax, fraud, audit) — never for product use.
/07

Your rights (CCPA/CPRA and friends)

If you are a California resident, the California Consumer Privacy Act ("CCPA") as amended by the California Privacy Rights Act ("CPRA") gives you the following rights. We extend the same rights to all users, regardless of where you live.

Right to know
Request a copy of the personal information we hold about you, the categories of sources we collected it from, and the categories of third parties we share it with.
Right to delete
Request that we delete your personal information. We honor these requests within 30 days.
Right to correct
Request that we correct inaccurate personal information.
Right to portability
Receive a copy of your data in a machine-readable format (JSON or CSV). Export from Settings → Data, or email us.
Right to limit use of sensitive PI
Tell us to use your sensitive personal information (financial account info) only for the core service and not for any secondary purpose. We honor this by default.
Right to opt out of sale or sharing
We do not sell or share personal information for cross-context behavioral advertising. Nothing to opt out of, but the right exists.
Right to non-discrimination
We will not deny service, charge different prices, or provide a different level of service because you exercised a privacy right.

How to exercise: the fastest path is Settings → Privacy → Export or Delete inside the app. You can also email fiankobuckle@gmail.com from the address on your account. We may ask you to verify ownership of the account before acting on a request. Authorized agents may submit requests on your behalf with written permission.

You also have the right to appeal a denied privacy request by replying to our denial; we will respond within 45 days.

/08

Security

  • All data encrypted in transit (TLS 1.3) and at rest (AES-256).
  • Plaid access tokens are stored encrypted with envelope encryption keys held in AWS KMS.
  • Production access is limited to a small group of engineers, gated by hardware-key 2FA, and logged.
  • Annual third-party penetration tests; quarterly internal reviews.
  • If a breach affects your data, we will notify you and the relevant authorities within 72 hours of confirmation.

No system is impenetrable. If you find a vulnerability, please report it to fiankobuckle@gmail.com. We run a coordinated-disclosure program and will not pursue good-faith research.

/09

Children

Pocketwatch is not directed at children under 18. We do not knowingly collect data from anyone under 18. If you believe a minor has signed up, email us and we will delete the account.

/10

Changes to this policy

When we make material changes, we will post the new policy here and email active users at least 14 days before the changes take effect. The "Effective" date at the top reflects the most recent update. Older versions are available on request.

/11

Contact us

Privacy requests
fiankobuckle@gmail.com
Security disclosures
fiankobuckle@gmail.com
General
fiankobuckle@gmail.com
Mailing address
Couthless Inc., 2634 Weddington Place, Marietta, GA 30068
Data Protection Officer
fiankobuckle@gmail.com

We aim to respond to privacy and security inquiries within 5 business days, and to formal CCPA/CPRA requests within 45 days as the law requires.