Trust & Security
How Lait protects your money and your data, in plain language. No jargon, no certifications we do not hold, no fine print that contradicts this page.
How we protect you
Read-only by design
Bank connections use PSD2 read-only access. We can never move, transfer, or spend your money.
Encrypted end to end
AES-256 at rest, TLS 1.3 in transit. Exchange API keys are encrypted and never returned in responses.
Secure sign-in
Authentication is handled by Clerk. You only ever see your own data.
Your data stays in the EU
Hosted on Neon (EU Postgres) and Vercel (EU edge), with full GDPR rights.
We never sell your data
No advertisers, no data brokers, no profiling, no credit scoring. Ever.
We tell you when a sync breaks
When a connection breaks or a consent is about to expire, we surface the real error instead of letting your numbers go stale in silence. You always know whether what you are looking at is live.
Revolut · sync failed
Consent invalid · 401 Unauthorized
The exact alert you would see.
Built on
The infrastructure behind Lait — chosen for security and EU data residency, not just convenience. The full list of processors, with each one’s purpose, lives in our Privacy Policy.
Read-only bank connections under PSD2
Read-only brokerage connections
Authentication & secure sign-in
EU-hosted Postgres database
EU hosting · cookieless analytics
Error & uptime monitoring
Optional AI — private by default
AI features are optional and opt-in. When you use them, we send only the minimum context needed — never your credentials, and never for advertising or profiling. You can use Lait completely without ever touching AI.
Transaction insights & advisor
AI advisor (Claude)
Research & translation
In detail
Read-only Open Banking (PSD2)
Encryption & credentials
Authentication & access control
Where your data lives (GDPR)
We never sell your data
Questions?
Security questions, data requests, or you just want to dig deeper? Write to a real person.
