Security and Privacy

At ExMint, we believe that your financial data belongs to you and only you. Our mission is to empower you with tools to manage your personal finances effectively while maintaining complete control over your data. This section outlines our robust security measures and privacy-first approach.

Our Privacy Philosophy

ExMint was built on the fundamental principle that individuals should have full control over their personal financial data. We’ve designed our system to give you powerful financial management tools without compromising your privacy or data ownership.

Data Handling

What We Store

• Basic Account Information: We keep only the essential details needed to manage your account, such as your username and email address.
• Encrypted Access Tokens: We store encrypted access tokens provided by Plaid, our banking data partner. These tokens allow us to fetch your transaction data when you request a sync, but they can’t be used to directly access your bank accounts.
• Account Metadata: We store basic, non-sensitive information about your linked accounts, such as account names and types (e.g., “Checking Account”, “Credit Card”), and the last 4 digits of the account number for easy identification.
• Sync Logs: We keep records of when you sync your data, including the number of transactions synced, for troubleshooting and service improvement purposes.

What We Don’t Store

• Your Financial Transactions: We do not store any of your actual transaction data on our servers. This data is fetched during syncs and sent directly to your Excel workbook.
• Account Balances: We don’t keep records of your account balances.
• Full Bank Account Numbers: We never store your complete bank account numbers.
• Bank Login Credentials: Your bank login information is never stored on our servers.

How We Protect Your Data

• All sensitive data, including access tokens, is encrypted using industry-standard encryption methods.
• We use secure authentication methods to protect your ExMint account.
• Our system is designed to minimize data retention and maximize your control over your financial information.

As a display of our transparency, here is the data model of our database:

How It Works

1. When you initiate a sync, ExMint uses your Plaid token to request data from your financial institutions through Plaid.
2. This data is transmitted directly to your Excel workbook via the ExMint Add-In.
3. The transaction data is immediately written to your Excel file and is never stored on ExMint’s servers, databases, or any other storage means.
4. Once the data is in your Excel file, it’s under your control. You can save it locally, on your personal cloud storage, or wherever you choose.

Security Measures

While we don’t store your financial data, we still implement robust security measures to protect your account and the sync process:

• Encryption: All data transmission is encrypted using industry-standard protocols.
• Secure Authentication: We use modern, secure authentication methods to protect your ExMint account.
• Regular Security Audits: Our systems undergo regular security reviews and updates.

Your Role in Data Security

While we’ve designed ExMint with privacy and security in mind, you play a crucial role in protecting your data:

1. Keep your Excel file secure, especially if it contains sensitive financial information.
2. Use strong, unique passwords for your ExMint account and bank accounts.
3. Be cautious when accessing your financial data on public or unsecured networks.

Transparency and Control

We believe in complete transparency about our data handling practices. You can request a full report of what data we hold about you at any time. Additionally, you have the right to request the deletion of your account and all associated data from our systems.

Third-Party Services

We use Plaid to securely connect to your financial institutions. While we don’t store your transaction data, Plaid may have its own data retention policies. We encourage you to review Plaid’s privacy policy for more information.

At ExMint, we’re committed to providing you with powerful financial management tools while ensuring you retain full control over your data. Our system is designed to keep your financial information where it belongs – in your hands. By using ExMint, you’re not just managing your finances; you’re taking control of your financial data.

laid’s Commitment to Security

Plaid takes extensive measures to ensure the security and privacy of your financial information. Here are some of the key practices Plaid employs:

1. Data Encryption:
   • Plaid uses advanced encryption protocols to protect your data during transmission and while at rest. This ensures that your information is secure and inaccessible to unauthorized parties.
2. Access Controls:
   • Plaid implements robust access controls to restrict access to your data. Only authorized personnel with a legitimate need to access your information can do so.
3. Continuous Monitoring:
   • Plaid continuously monitors their systems for any suspicious activity or potential security threats. This allows them to respond quickly to any potential issues and protect your data.
4. Regular Audits:
   • Plaid undergoes regular security audits and assessments by independent third parties to ensure compliance with industry standards and best practices.
5. Transparency:
   • Plaid is committed to transparency in how they handle and protect your data. They provide detailed information about their security practices and privacy policies on their website.

• Plaid Security: https://plaid.com/security/
• Plaid Privacy: https://plaid.com/legal/#end-user-privacy-policy

Tips for Enhancing Your Own Security

1. Use Strong Passwords:
   • Create strong, unique passwords for your ExMint account and other financial accounts. Avoid using easily guessable passwords.
2. Enable Two-Factor Authentication (2FA):
   • Enable 2FA for an added layer of security. This requires a second form of verification (such as a code sent to your phone) in addition to your password.
3. Monitor Your Accounts:
   • Regularly monitor your financial accounts for any unauthorized transactions. Report any suspicious activity to your financial institution immediately.
4. Update Software Regularly:
   • Ensure that you are using the latest version of the ExMint Add-In and other software to benefit from the latest security updates and features.
5. Secure Your Devices:
   • Use antivirus software and keep your operating system and applications updated to protect against malware and other security threats.

By following these best practices and leveraging the security measures provided by ExMint and Plaid, you can ensure that your financial data remains safe and secure.