Privacy Policy

Last updated: January 1, 2026  ·  Effective date: January 1, 2026

1. Introduction & Scope

Welcome to Welthon App ("Welthon," "we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website at welthonapp.fun, our mobile application, and any related services (collectively, the "Service").

Please read this policy carefully. If you disagree with its terms, please discontinue use of the Service. By accessing or using Welthon, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

This policy applies to all users of the Service located anywhere in the world, with specific provisions for users in California (CCPA) and the European Economic Area (GDPR).

2. Information We Collect

We collect information you provide directly to us, information generated through your use of the Service, and in some cases, information from third-party sources.

2.1 Account Information

When you create an account, we collect:

  • Full name
  • Email address
  • Password (stored in hashed, encrypted form — never in plaintext)
  • Date of birth (to verify you are 18 or older)
  • Country and state of residence

2.2 Financial Data

To provide portfolio tracking and wealth management features, we may collect:

  • Brokerage and investment account information (connected via read-only OAuth)
  • Account balances and portfolio holdings
  • Transaction history you choose to import
  • Financial goals and target amounts you enter
  • Risk tolerance preferences

Important: Welthon connects to financial accounts using read-only access only. We cannot move, transfer, or withdraw funds on your behalf. We never store your banking credentials or brokerage passwords.

2.3 Usage Data

We automatically collect certain information when you use the Service, including:

  • Pages and features accessed, and time spent on each
  • Clicks, scrolls, and navigation paths
  • Feature usage patterns and preferences
  • Error logs and performance data
  • Search queries within the Service

2.4 Device & Technical Data

  • IP address and approximate location (city/region level)
  • Browser type and version
  • Operating system and device type
  • Device identifiers
  • Referring URLs

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide the Service: Create and maintain your account, display your portfolio data, generate reports, and deliver features you request.
  • To personalize your experience: Tailor insights, recommendations, and content to your financial goals and preferences.
  • To communicate with you: Send transactional emails (account confirmation, security alerts), product updates, and, where you have opted in, marketing communications.
  • To improve the Service: Analyze usage patterns, fix bugs, and develop new features based on how users interact with the platform.
  • To ensure security: Detect and prevent fraud, unauthorized access, and abuse of the Service.
  • To comply with legal obligations: Respond to lawful requests from authorities, enforce our Terms of Service, and fulfill regulatory requirements.

4. How We Share Your Information

We do not sell, rent, or trade your personal information to third parties. We may share your information only in the following limited circumstances:

4.1 Service Providers

We work with trusted third-party vendors who assist in operating the Service, such as cloud hosting providers, analytics platforms, customer support tools, and payment processors. These vendors are contractually bound to use your data only to provide services to Welthon and to maintain appropriate security measures.

4.2 Legal Requirements

We may disclose your information if required to do so by law or in response to valid legal process (such as a subpoena or court order), or if we believe disclosure is necessary to protect the rights, property, or safety of Welthon, our users, or the public.

4.3 Business Transfers

If Welthon is involved in a merger, acquisition, or sale of all or a portion of its assets, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on the Service prior to your data being transferred and becoming subject to a different privacy policy.

4.4 With Your Consent

We may share your information for any other purpose with your explicit prior consent.

5. Financial Data Handling

This section specifically addresses how we handle sensitive financial data, which we treat with the highest level of care.

Financial data is the most sensitive category of information we hold. We apply the following specific protections:

  • Read-only access: All financial account connections use read-only OAuth tokens. We never have the ability to initiate transactions.
  • No credential storage: We never store your bank or brokerage login credentials. Authentication is handled entirely by your financial institution.
  • Encryption: All financial data is encrypted at rest using AES-256 and in transit using TLS 1.2 or higher.
  • Access controls: Access to financial data is restricted to employees with a legitimate operational need, governed by strict internal policies.
  • No sale of financial data: We will never sell your financial account information, transaction data, or portfolio details to any third party under any circumstances.
  • Data minimization: We only collect and retain the financial data necessary to provide the features you use.
  • Third-party aggregators: Where we use third-party services to connect to financial accounts (such as data aggregation providers), these providers are subject to equivalent or stricter data protection requirements.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with the Service. You may delete your account at any time, after which we will delete or anonymize your personal information within 30 days, except where:

  • We are required to retain it for legal, regulatory, or tax compliance purposes
  • Retention is necessary to resolve disputes or enforce our agreements
  • The data has already been anonymized and cannot reasonably be re-identified

Aggregated, anonymized data that cannot be used to identify any individual may be retained indefinitely for analytics and product improvement purposes.

7. Data Security

We implement industry-standard technical and organizational measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These include:

  • 256-bit AES encryption for data at rest
  • TLS 1.2+ encryption for all data in transit
  • Regular security audits and penetration testing
  • Strict employee access controls and least-privilege principles
  • Multi-factor authentication for internal systems
  • SOC 2 Type II compliant infrastructure
  • Incident response procedures with timely notification in the event of a breach

No method of transmission over the internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

8. Your Rights

Depending on your location, you may have certain rights with respect to your personal information.

8.1 California Residents (CCPA)

Under the California Consumer Privacy Act (CCPA), California residents have the right to:

  • Know what personal information we collect, use, disclose, and sell
  • Delete personal information we have collected, subject to certain exceptions
  • Opt-out of the sale of personal information (note: we do not sell personal information)
  • Non-discrimination — we will not discriminate against you for exercising your CCPA rights

To exercise these rights, contact us at contact@welthonapp.fun.

8.2 EEA / UK Residents (GDPR)

If you are located in the European Economic Area or United Kingdom, you have the right to:

  • Access the personal data we hold about you
  • Rectify inaccurate or incomplete data
  • Erasure ("right to be forgotten") under certain circumstances
  • Restrict or object to processing of your data
  • Data portability — receive your data in a structured, machine-readable format
  • Withdraw consent at any time where processing is based on consent
  • Lodge a complaint with your local data protection authority

Our legal bases for processing include: performance of contract, legitimate interests, compliance with legal obligations, and consent where explicitly obtained.

9. Cookie Policy

We use cookies and similar tracking technologies to operate and improve the Service. The types of cookies we use include:

  • Essential cookies: Required for the Service to function (e.g., session authentication). Cannot be disabled.
  • Analytics cookies: Help us understand how users interact with the Service (e.g., page views, session duration). Collected in aggregate and anonymized where possible.
  • Preference cookies: Remember your settings and preferences for a better experience.

We do not use advertising or tracking cookies for third-party ad targeting. You can control cookie preferences through your browser settings. Note that disabling certain cookies may affect the functionality of the Service.

10. Third-Party Services

The Service may contain links to third-party websites or integrate with third-party services. This Privacy Policy does not apply to those third parties. We encourage you to review the privacy policies of any third-party services you use in connection with Welthon.

Our key third-party integrations include cloud infrastructure providers, analytics services, and financial data aggregation services — all of whom are contractually required to maintain appropriate data protection standards.

11. Children's Privacy

The Service is intended for users who are 18 years of age or older. We do not knowingly collect personal information from anyone under the age of 18. If we become aware that we have collected personal information from a person under 18, we will take immediate steps to delete that information. If you believe we may have inadvertently collected information from a minor, please contact us at contact@welthonapp.fun.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will:

  • Update the "Last updated" date at the top of this page
  • Send an email notification to registered users
  • Display a prominent notice within the Service

Your continued use of the Service after the effective date of any changes constitutes your acceptance of the revised policy. We encourage you to review this page periodically.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your data, please contact us:

We aim to respond to all privacy-related inquiries within 30 days.