ModernRetire — Security & Cookie Settings

ModernRetire takes security seriously. While retirement planning is computed in the browser, we still maintain security controls for account access, data storage, and our hosting environment.

Below is an overview of our security approach and cookie usage.

1. Browser-Based Calculations

The core retirement planning engine runs entirely in your browser. Your inputs, assumptions, and projections are processed locally, and calculation results are not sent to our servers unless you explicitly save a plan as a Premium user.

This approach minimizes data exposure and reduces the amount of sensitive information transmitted over the network.

2. Account Security

For account holders, authentication is handled by Clerk. Clerk maintains password hashing, session management, and user authentication flows. We rely on Clerk's security practices for account credentials and do not store passwords ourselves.

If you create a Premium account, keep your credentials secure and notify us immediately if you suspect unauthorized access.

3. Data Storage

Premium plan data is stored in an encrypted cloud database. Access is restricted to authenticated user sessions and our application server. We employ standard security controls provided by our hosting provider.

We also use automatic backups and access controls to protect your data from accidental loss or unauthorized access.

4. Vercel Hosting

ModernRetire is hosted on Vercel. Vercel provides secure infrastructure, HTTPS encryption, network security, and continuous deployment. We also use Vercel's serverless functions only for lightweight data operations and not for processing sensitive financial calculations.

5. Cookies and Tracking

We use minimal cookies and tracking only when necessary for service functionality or authentication.

• Authentication cookies: Used by Clerk to maintain your signed-in session.
• Vercel Analytics: Does not use cookies and collects only anonymized, aggregate page view data.

We do not use advertising cookies, behavioral tracking cookies, or third-party marketing pixels.

6. Security Best Practices

• Use a strong, unique password for your account.
• Enable device-level security on your computer and browser.
• Log out of shared computers after using the Service.
• Keep your browser up to date.

7. Data Breach Response

In the unlikely event of a security incident, we will investigate promptly, notify affected users as required by law, and take corrective action to protect the Service and user data.

8. Contact

For security concerns, please contact us at support@modernretire.com.