DollaBoi
    Security & Compliance

    DollaBoi runs on compliance, transparency, and trust

    We built DollaBoi for people juggling serious money moves. That means playing by North American privacy rules, leaning on proven partners, and keeping your data out of reach for anyone but you.

    Bank-grade infrastructure

    DollaBoi runs on SOC 2–ready infrastructure hosted in North America with encryption in transit and at rest. Every request is scoped through signed tokens and audited for unusual behavior.

    Plaid powers every connection

    Plaid is the industry standard for connecting to banks and fintech accounts. You sign in with your institution directly inside Plaid’s window; DollaBoi never sees your credentials and Plaid never stores them.

    No sensitive data at rest

    We store metadata—never raw balances, transactions, or account numbers on our servers. When DollaBoi needs information, it requests a fresh snapshot from Plaid using short-lived tokens.

    How Plaid keeps the bridge secure

    Plaid acts as the encrypted tunnel between DollaBoi and your financial institutions. When you connect a bank, Plaid pops open a secure window owned by your institution where you sign in directly. Those credentials are never shared with DollaBoi or stored by Plaid.

    Once authenticated, Plaid hands DollaBoi a tokenized key that lets us request balances and transactions on demand. Tokens expire, access can be revoked with one click, and every call is logged and monitored.

    Your controls stay front and center

    Telegram messages stay masked

    Updates and alerts never include full account numbers or sensitive identifiers. Amounts are rounded or summarized, and you can tune how much detail you want in chat.

    Delete access any time

    Your DollaBoi dashboard lets you disconnect individual institutions or wipe every connection in one click. Plaid revokes access immediately and we drop any cached metadata.

    Compliance-ready policies

    We follow CAN-SPAM, PIPEDA, and state-level privacy legislation. Account recovery, consent, and auditing are baked into our processes from day one.

    Need a closer look?

    We're happy to share deeper documentation on encryption, third-party audits, and data handling. Reach out at security@dollaboi.ai and we'll walk you through the details.