Privacy Policy

Last updated: 26 March 2026

Short version: We don't sell your data, we don't use advertising trackers, and we collect the minimum necessary to run the service. Visitor queries are processed by Anthropic's Claude AI. Click events are logged anonymously for billing and analytics.

1. Who we are

FinCompare ("we", "us", "our") operates the website at fincompare.io — an AI-powered financial product comparison service for consumers across Europe. For questions about this policy, contact us at privacy@fincompare.io.

2. Data we collect

From visitors using the comparison tool

  • Compare queries. The text you enter when describing your financial needs. This is sent to Anthropic's Claude API to generate recommendations. We do not store your query text beyond the duration of your session.
  • IP address (hashed). Used solely for rate limiting (preventing API abuse). We apply a one-way hash before storage — the original IP address is not retained.
  • Session ID. A randomly generated identifier stored in your browser's memory for the duration of your visit. Used to associate compare events with click events for product ranking. Not linked to any personal identity.
  • Click events. When you click through to a financial product, we log the product ID, timestamp, hashed IP, referring URL, and browser user agent. This is used for affiliate commission tracking and product ranking.

From provider portal accounts

  • Account information. Email address, company name, and a hashed password (we never store plain-text passwords).
  • Billing data. Credit top-up amounts, click charges, and transaction history. Payment card details are processed directly by Stripe and never touch our servers.
  • Product listings. The financial product information you submit for comparison (rates, terms, URLs).

3. How we use your data

  • To generate personalised financial product recommendations
  • To prevent abuse of the comparison service (rate limiting)
  • To track affiliate clicks and commissions with partner networks
  • To operate, bill, and communicate with provider accounts
  • To improve product ranking and match quality over time

We do not use your data for behavioural advertising, profiling, or sale to third parties.

4. Third-party services

Running FinCompare requires sharing certain data with trusted third parties:

  • Anthropic (Claude API). Your compare query text is sent to Anthropic's API to generate recommendations. Anthropic's privacy policy applies to this processing: anthropic.com/privacy.
  • Stripe. Payment processing for provider top-ups. Stripe is PCI-DSS certified. Stripe's privacy policy: stripe.com/privacy.
  • Resend. Transactional email delivery (account confirmation, billing receipts, password resets) for provider accounts.
  • Affiliate networks. When you click a product, a unique tracking code (sub_id) is passed to the affiliate network (CJ, Impact, Awin, Fintel, or direct). This enables commission tracking and conversion reporting. The network may set its own cookies.
  • Cloudflare. Our infrastructure runs on Cloudflare's edge network. Cloudflare processes request data in accordance with their privacy policy.

5. Cookies and local storage

We use a small number of technical cookies only — no advertising or analytics cookies:

  • Portal session cookie. Set when you log in to the provider portal. A signed HTTP-only cookie containing your account ID. Expires after 30 days or on logout.
  • Affiliate network cookies. Third-party cookies set by affiliate networks when you click through to a product. These are set by the destination site, not by FinCompare, and are governed by the respective network's cookie policy.

We do not use Google Analytics, Facebook Pixel, or any other behavioural tracking script.

6. Data retention

  • Compare queries: Not stored beyond the active request.
  • Hashed IP addresses: Stored for up to 24 hours for rate-limiting purposes, then automatically expired.
  • Click events: Retained for 24 months for analytics and dispute resolution with affiliate networks.
  • Provider account data: Retained for the lifetime of the account, plus 6 years after closure (tax and billing records).

7. Your rights (GDPR)

If you are located in the European Economic Area or United Kingdom, you have the following rights under GDPR / UK GDPR:

  • Access. Request a copy of personal data we hold about you.
  • Rectification. Correct inaccurate personal data.
  • Erasure. Request deletion of your personal data where we have no legal obligation to retain it.
  • Restriction. Request that we limit processing of your data in certain circumstances.
  • Portability. Receive your data in a structured, machine-readable format.
  • Objection. Object to processing based on legitimate interests.

To exercise any of these rights, email privacy@fincompare.io. We will respond within 30 days. You also have the right to lodge a complaint with your national data protection authority.

8. International transfers

Anthropic's API infrastructure is based in the United States. By using the comparison tool, your query text is transferred to the US for processing under Anthropic's Standard Contractual Clauses. Cloudflare may route traffic through edge nodes globally but processes data under appropriate transfer mechanisms.

9. Children

FinCompare is not directed at children under 16. We do not knowingly collect data from minors. If you believe a minor has submitted data, contact us and we will delete it promptly.

10. Changes to this policy

We may update this privacy policy to reflect changes in our practices or legal requirements. Material changes will be notified to registered provider accounts by email. The "Last updated" date at the top of this page always reflects the current version.

11. Contact

For any privacy-related questions or requests: privacy@fincompare.io