Privacy Policy
Effective 4 July 2026
1. Who we are
TradeOrgs (“TradeOrgs”, “we”, “us”) is a read-only stock-analysis application. We let you browse Indian & US stocks, keep a watchlist, optionally connect an existing broker account, and understand your own buying and selling behavior. We never place, modify, or cancel trades, and nothing here is investment advice.
Questions about this policy or your data? Contact privacy@tradeorgs.app.
2. What we collect
- Account data. When you sign in, we store your email address and authentication details through our auth provider (Supabase).
- Watchlist & preferences. The stocks you track. In demo mode (no account) this lives only in a cookie in your browser.
- Broker connection. If you connect a broker, we store access/refresh tokens encrypted at rest. These are used read-only to fetch your data and are never exposed to the browser or used to trade.
- Brokerage data. Holdings, orders, and executed trades synced from your broker — the basis for your behavior insights.
- Telegram. If you link Telegram for alerts, we store your Telegram chat id so we can send you notifications.
- Technical data. Standard logs and cookies needed to run the service (session, security, basic diagnostics).
3. How we use your data
- To provide the app: catalog, watchlist, quotes, charts, and signals.
- To compute your behavior profile and insights from your own trade history.
- To send alerts you opt into (e.g. Telegram notifications).
- To secure the service, prevent abuse, and fix problems.
We do not sell your personal data, and we do not use your brokerage data for advertising.
4. Third parties we share data with
We use a small set of processors strictly to run the service:
- Supabase — database, authentication, and secure storage of your data (with row-level security so you can only access your own rows).
- Vercel — application hosting and delivery.
- Market-data providers (e.g. Yahoo Finance, and Finnhub if configured) — we send only the ticker symbols you view, never your personal or brokerage data.
- Anthropic (Claude) — if the AI behavior narrative is enabled, we send computed, aggregated metrics about your trading (not raw account credentials) to generate a plain-language summary.
- Telegram — only if you link it, to deliver your alerts.
We may also disclose data where required by law.
5. How we protect your data
- Broker tokens are encrypted at rest and never sent to the browser.
- Row-level security isolates each user’s data at the database level.
- Broker access is read-only — the app has no ability to place orders.
- Traffic is served over HTTPS.
No method of storage or transmission is 100% secure, but we design for least-privilege and minimal data collection.
6. Data retention & your choices
- You can remove watchlist items and disconnect your broker at any time.
- Disconnecting a broker deletes the stored (encrypted) tokens.
- You can request deletion of your account and associated data by emailing us; we will delete it unless we are legally required to retain it.
- Depending on your location, you may have rights to access, correct, or export your data.
7. Cookies
We use essential cookies for authentication and security, and — in demo mode — a cookie to remember your watchlist. We do not use advertising cookies.
8. Children
TradeOrgs is not intended for anyone under 18, and we do not knowingly collect their data.
9. Changes to this policy
We may update this policy from time to time. Material changes will be reflected here with a new effective date.
This document is provided for transparency and is not legal advice. If you operate TradeOrgs as a business, have it reviewed by qualified counsel and adapt it to the laws that apply to you (for example, India’s DPDP Act, the EU/UK GDPR, or others).
← Back to TradeOrgs