Your financial data deserves a straight answer.

Your bank credentials never touch us

Canopy never sees your bank username or password. When you connect an account, authentication happens entirely inside Plaid’s own interface. You enter your credentials directly into Plaid. Canopy’s servers are never in that loop. What we receive is a read-only access token that lets us pull your balances and transactions. That’s it.

Your Plaid access token is encrypted at rest

The access token is the most sensitive thing we store, so it gets the strongest protection we have.

It’s encrypted before it’s written to the database. The encryption key is stored in a dedicated secrets management system, separate from our application code and our database. This means that access to the database alone is not enough to read your token.

We can also revoke your token at any time. If you disconnect a bank or delete your account, we do exactly that: your token is invalidated with Plaid and the encrypted record is deleted.

Your data is isolated from other users

User data isolation is enforced at the database layer, not just in application code. The database itself is configured so that a query can only return data belonging to the authenticated user making the request. Even if a bug in application code attempted to fetch another user’s data, the database would return nothing.

AI features send data to Anthropic

We want to be direct about this: Canopy is an AI-powered app. Your financial context is sent to Anthropic’s API to generate your weekly Lookout and power the chat. This happens automatically as part of using the product, not only when you explicitly open the chat.

What gets sent: account balances, transaction categories, your top merchants by spend, investment holdings, active goals, and your first name.

What never gets sent: your Plaid access token, your bank credentials (we don’t have them), or any other user’s data.

Anthropic doesn’t use this data to train models, per their commercial terms. The model is stateless, so it doesn’t carry context between API calls. Anthropic’s standard retention policies for commercial customers apply to any short-term operational logs.

If you’re not comfortable with your financial summary being processed by an AI provider, Canopy isn’t the right fit. That’s a reasonable position and we’d rather say it plainly than bury it.

Data is encrypted in transit

All data in transit between your browser, Canopy’s servers, and our data providers is encrypted. Incoming webhook calls from Plaid are cryptographically verified before processing, so external parties cannot send forged requests to our infrastructure.

What the founder can see

Canopy is a solo-founded app in closed beta. As the operator, the founder has administrative database access. That means non-token data (transactions, balances, goals, profile) is readable by the admin.

What they cannot read: your Plaid access token, which remains encrypted even from the operator, and your bank credentials, which Canopy never has.

This is standard for any SaaS that stores data in readable form. We’re naming it clearly because your trust in Canopy implicitly includes trust in the operator.

Invite-only access

Canopy is currently invite-only. Signup is enforced through multiple independent layers, meaning there is no single point of failure that would allow an uninvited user to create an account. No account can be created without an email the founder has explicitly approved.