Mortgage Lens
Get started

Privacy

Privacy Policy

This policy is a working draft. It will be reviewed by counsel before launch. By using Mortgage Lens you agree to the version currently posted.

What we collect

  • Account information you provide: email, name, password (hashed).
  • Documents you upload: Loan Estimates, Closing Disclosures.
  • Inputs you provide via product intake forms.
  • Stripe customer ID and payment metadata (we never see your card number; Stripe handles that).
  • Standard server logs (IP, user agent, timestamps) for security and abuse detection.
  • Optional product analytics via PostHog when consented.

What we don't collect

  • Your Social Security Number.
  • Bank account or credit card numbers.
  • Anything you don't explicitly upload.

How we use your data

  • To deliver the product(s) you've purchased.
  • To support you when you contact us.
  • To detect and respond to abuse, fraud, and security incidents.
  • To improve the product via aggregated, anonymized statistics. We do not train external models on your individual data.

Document storage and retention

Documents are stored encrypted on Cloudflare R2 (S3-compatible). Access is restricted to your authenticated account via per-document signed URLs. Mortgage Lens engineering staff have administrative access for incident response only.

Default retention is seven years from the date of analysis. We match the federal mortgage-industry record-retention norm so that if you ever need to reference an old report (a refinance years later, a tax matter, a dispute with a lender), the PDF and the inputs that produced it are still available in your account. After seven years we automatically purge the documents, inputs, and analysis JSON unless you have an active monitoring entry tied to the report, in which case retention is extended for the life of the monitor plus 90 days.

You can delete any individual report (and its inputs) at any earlier time from your dashboard. Deletion is permanent: we remove the PDF from R2, clear the analysis JSON and input snapshot from the database, and the next backup cycle propagates the deletion to any secondary store. The Report row itself remains briefly as a tombstone (status: DELETED) for 30 days so your purchase history reflects what you ran, then is removed.

Account deletion

You can delete your entire Mortgage Lens account from the Settings page. Deleting your account is irreversible and cascades: every report you ever ran, every document you uploaded, every watchlist entry, and your profile record are removed from our primary database and queued for removal from backups within 30 days. We retain only the minimum financial records required for tax and regulatory compliance (Stripe purchase IDs and dollar amounts), with all personally identifying information stripped.

If you prefer not to delete the whole account but want a single report gone, delete just that report from the dashboard. If you would rather we keep monitoring you but stop receiving emails, use the pause or unsubscribe action on your watchlist management page.

Sharing

We do not share your individual data with lenders, brokers, marketers, or affiliates. Service providers we use (Stripe for payments, Cloudflare R2 for storage, Anthropic for AI processing, Resend for email, Sentry for error monitoring, PostHog for product analytics) receive only the data necessary to perform their function, under their published terms.

Your rights

  • You can delete documents and your account at any time from settings.
  • You can request a copy of all data we hold about you by emailing privacy@mortgagelens.ai.
  • CCPA/GDPR rights (where applicable) are honored. Email us to exercise them.

Cookies

We use a session cookie for authentication and (if enabled) a PostHog cookie for analytics. We do not use third-party advertising cookies.

Children

Mortgage Lens is not intended for use by anyone under 18.

Changes

Material changes are communicated by email to active customers.

Last updated: 2026-05-25.