Last updated: March 10, 2026
Welcome to Wealth Sandbox! We prioritize your privacy and we are dedicated to protecting it. At Dusk AI Inc. ("Wealth Sandbox", "we", "us", or "our"), we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains what data we collect, how we use it, and your rights as a user.
By using our Service, you agree to this policy. Please also review our Terms of Service to understand the complete agreement governing your use of our Services.
First and foremost: we never sell your data to anyone, and we never have!
Our policy is designed to inform you about:
This policy is relevant to information we collect:
We may update this Privacy Policy periodically, and we encourage you to review it regularly.
We respect your privacy, and your data is NEVER sold to anyone.
Wealth Sandbox collects and uses your data to provide and enhance our services and respects your privacy at every step. Here are the categories of data we collect and key points about how each is handled:
Includes data like your name, email address, username, date of birth, marital status, country, and user preferences. This information helps us personalize and manage your experience with our Service.
Encompasses all information you manually enter, such as:
All financial planning data is encrypted at rest and in transit. You control your data and can delete it anytime through your account settings.
When you interact with our AI assistant (in cloud mode), we collect:
When you use AI features, your inputs are processed by our third-party AI service providers (Anthropic Claude, OpenAI ChatGPT), whose servers are located in the United States. See Section 9 for how we handle international transfers. We do not use your personal financial data or AI conversation history to train AI models; we may use only anonymized, aggregated usage statistics. Your conversations and inputs are not shared with third parties for marketing purposes.
To protect your privacy, we do not include your name or your spouse's name in the scenario data sent to our AI providers. In the data we send for AI analysis we use generic identifiers—for example we refer to you and your spouse as "User" and "Spouse" (or "ME" and "SPOUSE" in data fields)—rather than personal names. This keeps personal identifiers out of AI processing while still allowing the assistant to answer questions about your scenario (e.g. "Spouse's income at 65"). Your chat messages are sent as you type them; if you include names or other personal details in a message, they will be sent to the AI. You can avoid including such information in messages if you prefer.
Local Mode: If you choose Local Mode, the AI assistant is not available. No financial data or queries are sent to our servers—projections and scenarios run in your browser. Your data never leaves your device.
Wealth Sandbox offers two data storage modes. When you use Local Mode (data stored only on your device, e.g. in browser storage):
In Cloud Mode, your data is stored on our servers and synced across devices; AI features require Cloud Mode. You can switch between modes in Settings. Switching from Cloud to Local Mode means we stop syncing and displaying your cloud-stored data; we do not delete your data from our servers when you switch. To request deletion of cloud-stored data, contact support@wealthsandbox.com.
When you use our Service, we may collect usage-related information. Detailed analytics (e.g. IP address, browser type, pages visited, time spent, geographic location, referrer information, interaction patterns) are collected only when you consent to Performance/Analytics cookies—see Section 4. We may use minimal server-side data (e.g. request metadata) as necessary for security, fraud prevention, and operating the service, without relying on optional cookies.
Usage data we may collect (depending on your cookie choices) includes: IP address, browser type and version, device information, pages visited, time spent, navigation patterns, geographic location (country/city level), and referrer information. This helps us improve functionality and user experience, detect and prevent fraud, and ensure security.
Payments are processed through Stripe and other third-party payment processors. Your payment information is subject to the processor's terms and privacy policy. We do not store complete credit card information on our servers. Payment processing is handled by secure, PCI-compliant third-party services.
Remember, as a user, you control your planning data and can delete it anytime through your account settings.
We use your information to provide, maintain, and improve our Services.
We do not use your personal financial data, scenarios, or AI conversation history to train AI models. We may use anonymized, aggregated usage statistics to improve our Services. Your data is not sold to third parties.
Cookie data is used to remember your preferences, maintain your login session, analyze site performance (with consent), and provide personalized experiences (with consent). Visit tracking data (collected via necessary cookies) is used for security monitoring, fraud detection, service optimization, debugging, and ensuring compliance with our terms of service.
For users in the European Union, United Kingdom, and other regions with similar data protection laws, we process your personal data based on the following legal grounds:
We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy.
You can request deletion of your account and associated data at any time by contacting our support team at support@wealthsandbox.com. Upon termination or account deletion, all your data (including AI conversation history and scenario data) will be permanently deleted within 60 days, except where we are required to retain data by law or for legitimate business purposes (e.g., fraud prevention, legal compliance).
Free tier users have the same data deletion and data portability rights as paid users. We may delete inactive free accounts (no login for 12 months or longer) after providing 30 days' notice to the account email address.
We may retain certain information in anonymized or aggregated form, which cannot be used to identify you, even after you delete your account.
Ensuring the security of your data is a top priority. We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction.
While no online service is entirely secure, we implement advanced measures to protect your data, including:
We continuously upgrade our security practices to prevent unauthorized access. Access to personal data is restricted to authorized personnel who need it for their job functions.
Both free and paid tier users receive the same level of data security protection, including encryption in transit and at rest. Your data protection does not depend on your subscription level.
In the event of a data breach, we will notify affected users and relevant authorities as required by law.
Your data is handled with the utmost care and discretion.
We engage third-party companies for tasks like data hosting, analytics, payment processing, and customer support. These providers are bound by strict data protection agreements and confidentiality requirements. Personal data is only shared with service providers as necessary and under confidentiality agreements.
We may disclose data in accordance with law enforcement or legal obligations, including court orders, subpoenas, or other legal processes. We comply with major privacy regulations like GDPR and CCPA.
User data is stored on servers located in Canada. When you use AI features, your inputs are processed by our AI service providers (Anthropic Claude, OpenAI ChatGPT), whose servers are located in the United States. We ensure all such transfers comply with applicable data protection laws, including PIPEDA.
When we transfer personal data outside of Canada (including to our AI providers in the United States), we ensure appropriate safeguards are in place to protect your information. For EU/UK users, we ensure adequate protection through Standard Contractual Clauses or adequacy decisions. We comply with applicable cross-border data transfer requirements in all jurisdictions where we operate.
In the event of a merger, acquisition, or sale of all or part of our business, your personal information may be transferred to the new owner. We will provide notice of such transfer and any choices you may have regarding your information. The new owner will be required to honor the commitments made in this Privacy Policy.
We retain data only as long as necessary for providing our services and as required by law.
As a Wealth Sandbox user, you have certain rights regarding your personal data. Depending on your location, you may have additional rights under applicable privacy laws.
Canadian residents have rights under PIPEDA, including the right to access their personal information and challenge the accuracy of that information. You may file a complaint with the Office of the Privacy Commissioner of Canada: www.priv.gc.ca or 1-800-282-1376.
EU/UK residents have additional rights under GDPR/UK GDPR, including:
California residents have specific rights under the CCPA, including:
To exercise your rights, please contact us at privacy@duskai.app. For data protection inquiries from EU/UK residents, please include 'GDPR Request' in your subject line. We will respond to your inquiries within 30 days (or as required by applicable law).
You can also access and modify your cookie settings through your account preferences at Privacy Settings.
We do not use your data for automated decision-making or profiling that has legal or significant effects on you without your explicit consent.
Our AI features are powered by third-party AI service providers (Anthropic Claude, OpenAI ChatGPT). When you use AI features, your inputs are sent to these providers for processing; their servers are located in the United States. Our AI services process your data to provide analysis and scenario-based outputs, which are informational and educational in nature. We do not use retrieval-augmented generation (RAG); instead we use on-demand, tool-based access to your scenario data so that only the data needed to answer your question is sent to the AI provider when you ask.
We do not use your personal financial data, scenarios, or AI conversation history to train AI models. We may use anonymized, aggregated usage statistics to improve our Services, but never your specific financial information or identifiable data.
Wealth Sandbox is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13.
If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at privacy@duskai.app.
We do not set cookies on devices of users we know to be under 13 years of age. Users between 13 and 18 should have parental consent before using our Services.
If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information promptly.
Our Services may contain links to third-party websites, applications, or services that are not owned or controlled by us. We are not responsible for the privacy practices of these third parties.
Third-party services we integrate with may include:
These services may collect information about you according to their own privacy policies. We encourage you to review the privacy policies of any third-party services you access through our platform.
Links to Other Websites: Our service may contain links to external websites. We are not responsible for the privacy practices of these external sites.
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the 'last updated' date.
You are advised to review this Privacy Policy periodically for any changes. If we make significant changes to how we use cookies or process your data, we will notify you through our cookie consent mechanism and may request renewed consent.
Material changes will be communicated via email to registered users where required by law. Your continued use of our Services after changes are posted constitutes acceptance of the updated policy.
This Privacy Policy is governed by the laws of the Province of British Columbia and the federal laws of Canada applicable therein. Any disputes relating to this policy or our handling of your personal data are subject to the exclusive jurisdiction of the courts of the Province of British Columbia.
If you have any questions about this Privacy Policy, our cookie practices, or wish to exercise your privacy rights, please contact us:
Dusk AI Inc.
Privacy Inquiries: privacy@duskai.app
Support: support@wealthsandbox.com
For cookie-specific inquiries or to exercise your cookie preferences, you can also reach us at the same email address.
For data protection inquiries from EU/UK residents, please include 'GDPR Request' in your subject line.
We will respond to your inquiries within 30 days (or as required by applicable law).
Thank you for trusting Wealth Sandbox with your financial planning!