We take security
very seriously
You're trusting us with your financial data. Here's exactly how we protect it.
Bank-level encryption
256-bit encryption protects your data at rest and in transit
- Same security standards as major banks
- TLS 1.3 encryption for all connections
- Data encrypted at rest with AES-256
- Regular security audits and penetration testing
Read-only access
We can see your balance, but we can never move your money
- Connected via Plaid (trusted by 8,000+ apps)
- We only have permission to read data
- Cannot initiate transfers or payments
- Your bank credentials never touch our servers
Your data is yours
We never sell your data or show you ads
- No selling data to third parties—ever
- No targeted advertising
- No sharing with data brokers
- Delete your data anytime with one click
Secure infrastructure
Built on enterprise-grade cloud infrastructure
- Hosted on secure cloud servers
- Automatic security updates
- DDoS protection included
- 99.9% uptime guarantee
We use Plaid to connect banks
Plaid is the industry standard for secure bank connections
What is Plaid?
Plaid is a secure intermediary that connects apps like Comfy to your bank. When you link your account, you authenticate directly with Plaid—not us. Plaid then gives us read-only access to your balance and transactions.
Who else uses Plaid?
Venmo, Coinbase, Robinhood, Acorns, and over 8,000 other financial apps. If you've used any of these apps, you've already trusted Plaid with your data.
Trust signals
- Plaid is used by Venmo, Coinbase, and thousands of financial apps
- Trusted by over 12,000 financial institutions
- Processes millions of secure connections daily
- SOC 2 Type II certified
Your data, your control
You're always in control of your information
Know what we collect
We only collect transaction history, account balances, and basic account info—nothing else.
Delete anytime
Want to leave? Delete all your data with one click in settings. No questions asked.
Disconnect instantly
Disconnect your bank accounts anytime. Takes 5 seconds, no hoops to jump through.
Export your data
Download all your data in a portable format whenever you want.
Security questions answered
The questions everyone asks (and should ask)
Can Comfy move money from my account?
No. We have read-only access through Plaid. We can see your balance and transactions, but we cannot initiate transfers, payments, or withdrawals. Ever.
Do you store my bank login credentials?
No. When you connect your bank, you authenticate directly with Plaid. Your username and password never touch our servers. We only receive an encrypted access token that lets us read your balance.
What happens if Comfy gets hacked?
Even if someone gained access to our systems, they couldn't steal money from your accounts (we can't move money). Your bank credentials are not stored with us. And all financial data is encrypted, making it unreadable without the encryption keys.
How do I know Plaid is secure?
Plaid is used by Venmo, Coinbase, and over 8,000 financial apps. They're SOC 2 Type II certified and regulated by financial authorities. They process millions of connections daily and have been audited extensively.
Can Comfy employees see my transactions?
Our employees do not browse user data. Access is restricted and logged. In rare cases (like debugging a specific issue you report), an engineer might need to view your data—but only with your permission and only temporarily.
Do you share my data with anyone?
We do not sell or share your financial data with advertisers, data brokers, or third parties. The only external service we use is Plaid (to connect banks) and OpenAI (to power the AI, but they don't store your data).