AI Transparency & Security
Full disclosure of how EstiNest uses artificial intelligence, handles your data, and maintains enterprise-grade security across all systems.
Last updated: February 20, 2026
How EstiNest Uses AI
EstiNest integrates AI (powered by OpenAI GPT-4o) to enhance — not replace — your financial analysis. AI is a tool that supplements our deterministic calculator engines, providing plain-English context around mathematically computed results.
Result Interpretation
AI explains calculator outputs in plain English — translating numbers into actionable context like 'your total interest is 93% of your loan amount.'
Scenario Comparisons
AI highlights differences between saved scenarios, identifying which variables have the largest impact on outcomes.
Optimization Suggestions
Pro users receive AI-generated strategies (e.g., 'Reducing your rate by 0.5% could save $18,000 over 30 years').
Customer Support
Our AI assistant answers questions about features, pricing, and general financial concepts — never providing specific financial advice.
AI Model Details
Important Limitations
EstiNest does NOT provide financial advice.
All calculations, AI explanations, and projections are educational modeling tools. They are not recommendations, guarantees, or professional financial counsel.
No Financial Advisory Services
EstiNest is not a registered financial advisor, broker, or fiduciary. Our outputs are mathematical estimates, not personalized investment recommendations.
No Access to External Accounts
AI never connects to your bank accounts, brokerage accounts, or credit reports. All analysis is based solely on inputs you manually provide.
No Automated Decisions
AI does not make investment decisions, execute trades, submit applications, or take financial actions on your behalf.
Projections Are Estimates
All models use standard financial formulas and assumptions. Real-world results will vary due to market conditions, fees, taxes, and individual circumstances.
AI Can Be Wrong
While our AI is grounded in financial principles, it may occasionally produce inaccurate or incomplete analysis. Always verify critical decisions with a licensed professional.
Data Handling & Privacy
Payment Data Handled by Stripe
Credit card numbers, billing addresses, and payment tokens never touch our servers. Stripe (PCI-DSS Level 1 certified) processes all transactions directly.
No Selling of User Data
We do not sell, rent, or share your personal information with third parties for marketing. Your data is used solely to provide EstiNest services.
Encryption in Transit and at Rest
All connections use TLS 1.3 encryption. Data stored in Cloudflare KV is encrypted at rest. Session tokens use HMAC-SHA256 signing.
Minimal Data Retention
Calculator inputs are processed in your browser and never stored on our servers. Subscription data is retained only for billing purposes. Sessions expire after 30 days.
Data Flow Summary
Security Architecture
Cloudflare WAF & DDoS Protection
Enterprise-grade Web Application Firewall filters malicious traffic. Automatic DDoS mitigation protects availability at the network edge.
TLS 1.3 / SSL Encryption
All data in transit is encrypted with TLS 1.3. HSTS is enforced with max-age=63072000 (2 years), includeSubDomains, and preload.
Rate Limiting & Bot Mitigation
API endpoints are rate-limited to prevent abuse. Cloudflare Bot Management identifies and blocks automated threats.
Vulnerability Scanning
Routine dependency audits, static analysis, and OWASP compliance reviews ensure our codebase remains secure.
Content Security Policy
Strict CSP headers prevent XSS, clickjacking, and code injection. Only whitelisted domains can load scripts and connect.
Edge-First Architecture
Cloudflare Workers execute at 300+ global edge locations — no single server, no centralized attack surface, instant failover.
Security Headers Active
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Referrer-Policy: strict-origin-when-cross-origin
Permissions-Policy: camera=(), microphone=(), geolocation=()
Content-Security-Policy: [strict policy with whitelisted domains]
Escalation Process
If you encounter an issue with our AI, calculations, billing, or security, we have a clear escalation path.
AI Assistant
Ask our AI assistant (available on this page and the status page) for immediate help with features, billing, or calculator questions.
Email Support
Contact support@estinest.com for account-specific issues, billing disputes, or technical bugs. We respond within 24 hours.
Report a Concern
Visit /contact to report AI inaccuracies, security vulnerabilities, or privacy concerns. We prioritize these reports.
Billing Resolution
For refund requests within 30 days, email support@estinest.com. We process refunds within 5 business days via Stripe or PayPal.
Accuracy & Methodology
EstiNest calculators use standard, peer-reviewed financial formulas sourced from authoritative bodies (IRS, SSA, BLS, Federal Reserve). Each calculator page cites its methodology and data sources.
Key Accuracy Considerations
- •All models are projections — they simplify complex real-world systems into estimable components.
- •Results depend entirely on user inputs — inaccurate inputs produce inaccurate outputs (GIGO principle).
- •Market conditions change — interest rates, tax brackets, and investment returns fluctuate over time.
- •Individual circumstances vary — our models use general assumptions that may not reflect your specific situation.
- •Always verify independently — consult licensed professionals before making financial decisions based on any calculator output.
Ask Our AI Assistant
Have questions about our AI, security, or data practices? Ask directly below.