Privacy Policy

Last updated: April 18, 2026 (version 2026-04-18)

1. What MemoryBank Is

MemoryBank is a family investment dashboard that displays real-time brokerage data for children's accounts. Parents sign in at mymemorybank.app to manage their family's portfolio view. Kids access their personalized dashboard on any device — phone, tablet, or a wall-mounted display — without needing a login of their own.

2. Information We Collect

  • Account information — your name and email address, provided at sign-up via Clerk (email/password or Google social login).
  • Brokerage data — portfolio balances, masked account numbers, holdings, and daily change data fetched from Charles Schwab or connected institutions (via Plaid) using OAuth tokens you authorize. We fetch this data on your behalf and display it to you; we do not analyze, sell, or share it.
  • Children's profiles — first name, emoji avatar, and color preference you enter for each child. No sensitive personal information about your children is required or stored.
  • OAuth tokens — Schwab, Plaid, and Google Photos access and refresh tokens, stored AES-256 encrypted at rest in our database. Raw tokens are never logged or accessible outside the encrypted store.
  • Google Photos data — if you connect Google Photos, we store your Google account email (to display which account is linked) and a Picker session ID (to remember which photos you selected). See section 6 for full details.
  • Device tokens — when you pair a kid's device using a 6-digit code, a random device token is generated and stored as a SHA-256 hash in our database. The raw token is stored only in the device's browser localStorage and is never logged server-side.
  • Usage data — standard server logs (IP address, timestamp, endpoint) for security and debugging. Logs are retained for 30 days.

3. How We Use Your Information

  • To display your family's investment portfolio on authorized devices.
  • To refresh brokerage data automatically so your dashboard stays current.
  • To display family photos as a screensaver on connected displays.
  • To maintain your account and children's profiles across sessions.
  • To process subscription payments via Stripe.
  • To send transactional emails (account changes, billing receipts).

We do not sell your data, share it with advertisers, or use it for any purpose beyond operating the MemoryBank service.

4. Brokerage Access

MemoryBank connects to Charles Schwab using read-only OAuth scopes, and to other financial institutions via Plaid. We never have the ability to place trades, move funds, or make changes to your brokerage accounts. You can revoke access at any time from the Connections page or directly from your Schwab or Plaid account settings.

MemoryBank is a display tool, not a financial advisor. Nothing displayed on the dashboard constitutes investment advice.

5. Data Storage & Security

  • Data is stored in a PostgreSQL database hosted on Railway (US region), encrypted at rest at the volume level.
  • OAuth tokens are additionally AES-256 encrypted at the application layer before being written to the database.
  • All traffic between your browser and our servers uses HTTPS/TLS.
  • Authentication is handled by Clerk, a SOC 2 compliant identity provider.
  • Device tokens are stored only as SHA-256 hashes — the raw token exists only on the paired device.
  • No credentials or secrets are ever committed to source control.

6. Google Photos Integration

If you choose to connect Google Photos, MemoryBank uses the Google Photos Picker API so you can select specific photos to display as a screensaver on your family's dashboard devices. This connection is optional and entirely parent-initiated.

  • Scope requested: photospicker.mediaitems.readonly — access only to the photos you explicitly select via Google's own Picker interface. We do not access your broader Google Photos library.
  • What we store: your Google account email (to display which account is linked), encrypted OAuth tokens, and a Picker session ID. No photo bytes, album names, or library metadata are stored in our database.
  • Caching: photo display URLs are cached in server memory for up to 45 minutes to serve the screensaver without re-fetching on every frame. This cache is purged immediately on disconnect.
  • No secondary use: photos are displayed only on your family's own authorized devices. We perform no facial recognition, AI/ML training, content analysis, or sharing of your photos.
  • Disconnect: clicking Disconnect on the Connections page revokes your token at Google's servers (via oauth2.googleapis.com/revoke), deletes all stored credentials, and purges the photo cache immediately.

MemoryBank's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

7. Children's Privacy & COPPA

MemoryBank is designed for use by parents and legal guardians managing their children's investment accounts. We do not knowingly collect personal information directly from children. Child profiles (first name, emoji, color) are entered and controlled entirely by the parent account holder.

In compliance with the U.S. Children's Online Privacy Protection Act (COPPA, 16 CFR Part 312), before any information about a child is added to your account we require the account holder to affirm that they are the child's parent or legal guardian and to provide verifiable consent. We record the timestamp, IP address, and version of this Privacy Policy at the moment consent is given.

As the parent or guardian you may at any time review the information we hold about your child, request that we delete it, or refuse to permit further collection or use of that information by contacting us at the address in section 11.

8. Payments

Subscription billing is processed by Stripe. MemoryBank does not store credit card numbers or full payment details. Stripe's privacy policy governs the handling of your payment information.

9. Data Retention

Your data is retained as long as your account is active. You may delete your account and all associated data by contacting us. Upon deletion, all personal data, OAuth tokens, child profiles, and device tokens are permanently removed within 30 days. Brokerage and Google Photos tokens are immediately cleared when you disconnect the respective service from the Connections page.

10. Your Rights

You may request access to, correction of, or deletion of your personal data at any time. California residents have additional rights under the CCPA. To exercise any of these rights, contact us at the address below.

11. Changes to This Policy

We may update this policy as the service evolves. Material changes will be communicated via the email address on your account at least 14 days before taking effect. Continued use of MemoryBank after changes constitutes acceptance of the updated policy. The current version is always available at mymemorybank.app/privacy.

12. Contact

Questions about this privacy policy or your data? Reach us at privacy@mymemorybank.app