Security

How your data is protected.

A finance product has to earn trust with specifics, not slogans. Here is exactly what we store, what we never store, and how it's protected.

No bank credentials, ever

There is no open-banking or broker connection anywhere in the product. We never ask for bank logins, so there are none to store, leak or misuse.

Encrypted in transit & at rest

All traffic runs over HTTPS/TLS, and data is encrypted at rest in our managed database platform.

Row-level security

Every user table enforces row-level security in PostgreSQL, so your records are isolated to your account at the database layer — not just in the app code.

Opt-in sharing only

Nothing is visible to anyone else by default. Family sharing is granular, per person, and revocable at any time.

A clean exit

Export your transactions and investments to CSV whenever you like, and have your account and data deleted on request.

Responsible disclosure

Found a security issue? Email hello@tsang.org.uk and we will investigate promptly.

What we store

  • Your email address and a password hash (passwords are handled by Supabase Auth — we never see or store the password itself).
  • The financial figures you enter or import: balances, transactions, investments, liabilities, goals and settings.

What we never store

  • Bank or broker login credentials — the product has no way to ask for them.
  • Open-banking tokens or account connections — there are none.
  • Card details — the service is free and takes no payments.

Where it runs

The website and APIs are hosted on Vercel. Data is stored in a managed PostgreSQL database on Supabase, which encrypts data at rest and in transit and provides managed infrastructure, redundancy and backups. Authentication is handled by Supabase Auth (email and password, with password reset by email).

How access is controlled

  • In the database: row-level security policies are enabled on every user table, so queries can only ever return rows belonging to the signed-in user or rows explicitly shared with them through a Family Space.
  • In the app: all data requests are authenticated; sessions expire and can be ended by signing out.
  • Operationally: production access is limited to the operator and used only to run and support the service.

Market data

Investment prices and FX rates are fetched from third-party market data sources. They may be delayed depending on the market and are intended as indicative valuations for tracking — not live trading quotes. Where a price can't be sourced, you can set a manual valuation.

Honest limitations

We'd rather tell you the boundaries than oversell. Tsang Portal is an independently operated service, not a bank: it doesn't hold money and isn't FCA-regulated (it doesn't need to be, because it never touches your accounts). Two-factor authentication is not yet available — it's on the roadmap; until then, please use a strong, unique password. If anything here is unclear, ask us at hello@tsang.org.uk.

Reporting a security issue

If you believe you've found a vulnerability, email hello@tsang.org.uk with the details. We take reports seriously and will respond as quickly as we can.

Trust is earned with specifics.

Free to start. No bank linking. Export and delete whenever you choose.

Create your free account