Privacy Policy

1. Information We Collect

Account Information

• Email address (used for authentication and as a unique identifier)
• Authentication method (email/password or Google sign-in)

Trading Data (User-Provided)

• Trade journal entries (date, direction, result, P/L, emotions, notes)
• Account configurations (name, size, risk rules)
• Trading rules and goals
• Watchlist symbols and analysis history
• Daily plans and discipline events
• Chart screenshots (when captured via extension)

Automatically Collected

• Basic analytics via Google Analytics (page views, feature usage) — anonymized
• Browser type and device information (for compatibility)

2. How We Use Your Information

• Authentication: To verify your identity and secure your account
• Core functionality: To store and display your trade journal, analytics, and settings
• AI analysis: Trade data and chart screenshots may be sent to AI providers (Anthropic Claude, Google Gemini) to generate analysis and feedback. Only the minimum necessary data is transmitted.
• Analytics: To understand feature usage and improve the Service (via Google Analytics)
• Notifications: To send trading alerts via Telegram (if configured by you)

3. Data Storage and Security

• All user data is stored in Google Firebase Firestore, secured with authentication-based access rules.
• Your email is hashed (SHA-256) to generate a unique user ID — your raw email is not used as a database path.
• Firestore security rules ensure users can only access their own data.
• Broker API tokens (e.g., Zerodha) are stored encrypted and are never exposed to the client.
• Payment processing is handled entirely by Stripe and Razorpay — we do not store credit card numbers.

4. Third-Party Services

We use the following third-party services that may process your data:

5. Data Retention and Deletion

• Your data is retained as long as your account is active.
• You can export all your data at any time from the Manage Data page.
• You can delete all your data at any time from the Manage Data page. Deletion is permanent and irreversible.
• AI providers may retain data according to their own policies. We recommend reviewing Anthropic's and Google's privacy policies.

6. What We Do NOT Do

• We do not sell your personal data or trading information.
• We do not share your data with advertisers.
• We do not use your trading data to trade against you or for any proprietary trading.
• We do not display ads within the application.

7. Browser Extension Data

• The extension reads DOM elements on trading platforms only when a matching platform config is active.
• Trade data extracted from platforms is sent only to your own Firebase account.
• Platform configs (CSS selectors) are stored locally in Chrome storage, not on our servers.
• Chart screenshots captured by the extension are stored in your Firebase account and may be sent to AI providers for analysis.

8. Cookies and Local Storage

• Firebase Auth: Session tokens for authentication
• localStorage: UI preferences (sidebar state, signal cache, price cache)
• Google Analytics: Standard GA4 cookies for anonymous usage tracking

9. Children's Privacy

The Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. Trading involves financial risk and should only be undertaken by adults who understand the risks involved.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of significant changes through the application. Continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact

For privacy-related questions or data requests, please reach out via our GitHub repository at github.com/mytradebuddy.