Designed around explicit consent and limited exposure.
FolioForecast stores user portfolio information so users can save work, rerun analysis, and build reports. Public sharing is opt-in. API keys are scoped and metered. Market data requests go to data providers; personal account data is not sent to market data providers.
Authentication
Account authentication is handled through Clerk. Protected product surfaces require a valid user session, and API surfaces require valid API credentials except documented demo paths.
Portfolio Storage
Saved portfolios remain private by default. A portfolio appears in rankings only when the user marks it public.
API Keys
API keys are hashed at rest, scoped by capability, and tied to usage limits and billing tiers.
Public Rankings
Rankings show username, portfolio name, asset count, return, risk, diversification, and score. Allocations require a separate sharing setting.
Analytics Cookies
Analytics now load only after the visitor accepts optional analytics cookies.
Disclaimers
FolioForecast provides educational analysis, not investment advice, brokerage, custody, or trade execution.