Privacy Policy
Effective Date: April 11, 2026
Welcome to Olive! This Privacy Policy applies to all our websites, applications, services, and other offerings linked to this policy (collectively, the "Services"). It explains how Olive Financial, Inc. ("Olive," "we," "our," or "us") collects, uses, stores, and protects your personal data. Please read it carefully to understand your rights and our responsibilities regarding your information.
Scope of this Privacy Policy
In providing the Services, Olive may collect personal data from individuals interacting with our Services, including, without limitation, mobile app users, website visitors, and potential customers. By accessing or using our Services, you acknowledge and consent to our practices regarding the collection, use, and sharing of your information as outlined in this Privacy Policy.
This Privacy Policy addresses how we handle "personal data," defined as any information identifying or relating to a specific individual, including information classified as "personally identifiable information" or "personal information" under applicable privacy laws, rules, or regulations. This Policy does not apply to the practices of entities we do not own or control or to individuals we do not manage.
What Personal Data Do We Collect?
This chart details the categories of personal data that we collect and have collected over the past 12 months:
| Category of Personal Data | Examples of Personal Data We Collect | Categories of Third Parties with Whom We Share this Personal Data |
|---|---|---|
| Identity and Profile Information | Phone number Name Email address (if provided) Profile and preference information | Service Providers |
| Usage Data | Content you view, save, or interact with Questions and topics you explore Reading progress and activity | Service Providers |
| Web and App Analytics | App and website interactions (such as through PostHog, Sentry) Session information Analytics events | Service Providers |
| Device Data | Device model and operating system version IP address and user agent | Service Providers |
| Other Identifying Information that You Voluntarily Choose to Provide | Information submitted by you in messages, feedback, survey responses, or other content you share through the Services | Service Providers |
Categories of Sources of Personal Data
We collect personal data about you from the following categories of sources:
- You
- When you provide such information directly to us.
- When you create an account or use our Services.
- When you provide free-form text such as questions, feedback, or responses to prompts.
- When you save or interact with content in the app.
- When you send us an email or otherwise contact us.
- When you use the Services and such information is collected automatically.
- Through Cookies (defined in the "Tracking Tools and Opt-Out" section below).
Our Commercial or Business Purposes for Collecting Personal Data
- Providing, Customizing, and Improving the Services
- Creating and managing your account.
- Authenticating your identity.
- Generating personalized content based on your interests and activity.
- Building and refining your profile based on your interactions with the Services.
- Providing support and assistance for the Services.
- Improving the Services, including our content generation systems and recommendation quality.
- Doing fraud protection, security, and debugging.
- Carrying out other business purposes stated when collecting your personal data or as otherwise set forth in applicable data privacy laws.
- Marketing the Services
- Marketing and selling the Services.
- Corresponding with You
- Responding to correspondence that we receive from you, contacting you when necessary or requested, and sending you information about Olive or the Services.
- Sending communications according to your preferences.
- Meeting Legal Requirements and Enforcing Legal Terms
- Fulfilling our legal obligations under applicable law, regulation, court order, or other legal process, such as preventing, detecting, and investigating security incidents and potentially prohibited activities.
- Protecting the rights, property, or safety of you, Olive, or another party.
- Enforcing any agreements with you.
- Resolving disputes.
We will not collect additional categories of personal data or use the personal data we collected for materially different, unrelated, or incompatible purposes without providing you notice.
How We Use AI to Process Your Data
Olive uses artificial intelligence throughout the app. When you use the Services, your inputs, activity, and related context may be sent to third-party AI model providers for processing. This includes generating personalized content, explanations, images, and recommendations.
These providers process your data according to their own privacy policies and data processing agreements. We may also store inputs and outputs related to AI processing in our systems for debugging and quality improvement purposes.
How We Share Your Personal Data
We disclose your personal data to the categories of service providers and other parties listed in this section. Depending on state laws that may be applicable to you, some of these disclosures may constitute a "sale" of your personal data. For more information, please refer to the section with state-specific rights below.
- Service Providers. These parties help us provide the Services or perform business functions on our behalf. They include:
- Hosting, technology, and communication providers.
- AI and machine learning providers.
- Identity verification and authentication providers.
- Cloud storage providers.
- Analytics providers.
- Security and fraud prevention consultants.
- Support and customer service vendors.
Legal Obligations
We may share any personal data that we collect with third parties in conjunction with any of the activities set forth under "Meeting Legal Requirements and Enforcing Legal Terms" in the "Our Commercial or Business Purposes for Collecting Personal Data" section above.
Business Transfers
All of your personal data that we collect may be transferred to a third party if we undergo a merger, acquisition, bankruptcy, or other transaction in which that third party assumes control of our business (in whole or in part). Should one of these events occur, we will make reasonable efforts to notify you before your information becomes subject to different privacy and security policies and practices.
Data that is Not Personal Data
We may create aggregated, de-identified, or anonymized data from the personal data we collect, including by removing information that makes the data personally identifiable to a particular user.
We may use such aggregated, de-identified, or anonymized data and share it with third parties for our lawful business purposes, including to analyze, build, and improve the Services and promote our business, provided that we will not share such data in a manner that could identify you.
Tracking Tools and Opt-Out
The Services use cookies and similar technologies such as pixel tags, web beacons, clear GIFs, and JavaScript (collectively, "Cookies") to enable our servers to recognize your web browser, tell us how and when you visit and use our Services, analyze trends, learn about our user base, and operate and improve our Services. Cookies are small pieces of data — usually text files — placed on your computer, tablet, phone, or similar device when you use that device to access our Services.
We use the following types of Cookies:
- Essential Cookies. Essential Cookies are required for providing you with features or services that you have requested. For example, certain Cookies enable you to log into secure areas of our Services. Disabling these Cookies may make certain features and services unavailable.
- Functional Cookies. Functional Cookies are used to record your choices and settings regarding our Services, maintain your preferences over time, and recognize you when you return to our Services. These Cookies help us to personalize our content for you and remember your preferences.
- Performance/Analytical Cookies. Performance/Analytical Cookies allow us to understand how visitors use our Services. They do this by collecting information about the number of visitors to the Services, what pages visitors view on our Services, and how long visitors are viewing pages on the Services.
You can decide whether or not to accept Cookies through your internet browser's settings. Most browsers have an option for turning off the Cookie feature, which will prevent your browser from accepting new Cookies, as well as (depending on the sophistication of your browser software) allow you to decide on acceptance of each new Cookie in a variety of ways. You can also delete all Cookies that are already on your device.
If you do this, however, you may have to manually adjust some preferences every time you visit our website and some of the Services and functionalities may not work.
To explore what Cookie settings are available to you, look in the "preferences" or "options" section of your browser's menu. To find out more information about Cookies, including information about how to manage and delete Cookies, please visit http://www.allaboutcookies.org/.
Data Security and Retention
We seek to protect your personal data from unauthorized access, use, and disclosure using appropriate physical, technical, organizational, and administrative security measures based on the type of personal data and how we are processing that data. You should also help protect your data by limiting access to your device and signing off after you have finished accessing your account.
Although we work to protect the security of your account and other data that we hold in our records, please be aware that no method of transmitting data over the internet or storing data is completely secure.
We retain personal data about you for as long as you have an open account with us or as otherwise necessary to provide you with our Services. In some cases we retain personal data for longer, if doing so is necessary to comply with our legal obligations, resolve disputes or collect fees owed, or is otherwise permitted or required by applicable law, rule, or regulation.
We may further retain information in an anonymous or aggregated form where that information would not identify you personally.
Personal Data of Children
As noted in the Terms of Service, we do not knowingly collect or solicit personal data about children under 13 years of age; if you are a child under the age of 13, please do not attempt to register for or otherwise use the Services or send us any personal data.
State Law Privacy Rights
California Resident Rights
Under California Civil Code Sections 1798.83-1798.84, California residents are entitled to contact us to prevent disclosure of personal data to third parties for such third parties' direct marketing purposes; in order to submit such a request, please contact us at [email protected].
Nevada Resident Rights
If you are a resident of Nevada, you have the right to opt-out of the sale of certain personal data to third parties who intend to license or sell that personal data. You can exercise this right by contacting us at [email protected] with the subject line "Nevada Do Not Sell Request" and providing us with your name and the email address associated with your account.
Colorado, Connecticut, Montana, Oregon, Texas, Utah, and Virginia Rights
To the extent that Olive is processing any of your personal data in scope of the Colorado Privacy Act, Connecticut Data Privacy Act, Montana Consumer Data Privacy Act, Oregon Consumer Privacy Act, Texas Data Privacy and Security Act, Utah Consumer Privacy Act, and/or Virginia Consumer Data Protection Act, Olive will:
1. Ensure that each person authorized to process personal data is subject to a duty of confidentiality with respect to the personal data;
2. Delete or return all your personal data upon your request at the end of the provision of the Services, unless retention of the personal data is required by law;
3. Allow, and cooperate with, reasonable assessments by a designated assessor; alternatively, Olive may arrange for a qualified and independent assessor to conduct an assessment of Olive's policies and technical and organizational measures in support of the obligations under the foregoing laws using an appropriate and accepted control standard or framework and assessment procedure for such assessments;
4. Engage any subcontractor pursuant to a written contract in accordance with the foregoing laws that requires the subcontractor to meet the obligations of Olive with respect to the personal data.
Changes to this Privacy Policy
We're constantly trying to improve our Services, so we may need to change this Privacy Policy from time to time, but we will alert you to any such changes by placing a notice on the Olive website, by sending you a notification, and/or by some other means. Please note that if you've opted not to receive legal notice communications from us (or you haven't provided us with your contact information), those legal notices will still govern your use of the Services, and you are still responsible for reading and understanding them.
If you use the Services after any changes to the Privacy Policy have been posted, that means you agree to all of the changes. Use of information we collect is subject to the Privacy Policy in effect at the time such information is collected.
Contact Information
If you have any questions or comments about this Privacy Policy, the ways in which we collect and use your personal data, or your choices and rights regarding such collection and use, please do not hesitate to contact us at [email protected].