Privacy Policy
How TradeSense AI collects, uses, and protects your personal data — including your GDPR and CCPA rights.
Effective May 1, 2026
1. Introduction
This Privacy Policy explains how TradeSense AI ("we", "us") collects, uses, shares, and protects personal information when you use the TradeSense AI mobile and web applications, the AI trading engine, and related services (the "Service").
We are the data controller of your personal information. By using the Service you consent to the practices described below.
2. Information we collect
We collect the following categories of information:
Account data: email, password hash, profile photo, two-factor factors, and biometric vault preferences (the biometric data itself never leaves your device).
Financial data: deposits, withdrawals, credit-hour balances, subscription tier, and the last 4 digits + brand of payment cards. Full card numbers are tokenized by FamousPay and never stored by us.
Trading data: AI decisions, signals, backtest configurations, strategy parameters, and execution history you generate inside the Service.
Risk-control data: paper-learning status, live-trading consent timestamps, skipped-learning acknowledgements, and safety-control audit events.
Device data: device model, OS version, app version, IP address, crash logs, and approximate (city-level) geolocation derived from IP.
Usage data: pages visited, features used, button clicks, and timestamps — used to improve product performance.
Support data: messages, attachments, and metadata you send when contacting support@tradesense.ai.
3. How we use your information
We use your information to:
Provide, operate, and secure the Service, including running the AI engine on your behalf.
Process payments, deposits, withdrawals, and credit-hour entitlements via FamousPay, Apple, and Google.
Authenticate you, prevent fraud, detect abuse, and enforce our Terms.
Send transactional emails (receipts, security alerts, subscription notices). These cannot be unsubscribed without closing your account.
Send marketing emails about new features and trading research — you can opt out at any time from the email footer or Account settings.
Comply with legal, tax, and regulatory obligations (e.g., AML/KYC where applicable).
4. Swarm intelligence — what is and is NOT shared
TradeSense AI runs a peer-to-peer "swarm" where each install operates its own private AI model. If — and only if — you opt in (Account → Swarm intelligence → Share my signals), your local AI may publish anonymized trade signals to other members.
A signal contains ONLY: a pseudonymous handle you choose, asset class, ticker, action (buy / sell / hold / watch), confidence, an optional short thesis (max 500 chars), horizon, expected move, fee class, model version, and a tamper-evident integrity hash.
A signal NEVER contains: your email, name, IP address, balance, position size, broker / exchange API keys, device identifiers, geolocation, or any other PII. Each user keeps their own AI weights — we do NOT perform federated learning that mixes weights across users.
Sharing is opt-in and asymmetric: you can receive signals without sharing, and disable sharing at any time with one toggle.
You can rotate the cryptographic key fingerprint that signs your contributions, or change your handle, at any time.
Other members can only ever see your handle and the signals you chose to publish — never your underlying account, balance, or identity.
Published signals expire after 7 days and are then auto-purged from the network.
A per-user rate limit (20 signals / hour) is enforced server-side, with rate-limit triggers logged to your security audit trail.
Withdrawing consent: turning off "Share my signals" stops new publications immediately; deleting your account removes all of your past contributions.
5. Internal security network
We operate an internal security network designed to protect your data from thieves and hackers. Every sensitive action — sign-in, password change, withdrawal request, swarm opt-in, signal publication, key rotation, rate-limit trigger — writes a row to a tamper-evident audit log that ONLY YOU can read (Account → Security network).
Transport: TLS 1.2+ with HSTS for every request to our servers.
At rest: AES-256 encryption on managed Postgres + storage; encrypted backups with separate key custody.
Row-level security: every table that touches your data is locked so only your authenticated session can read or modify your rows.
Authentication: bcrypt-hashed passwords, optional TOTP-based 2FA, optional biometric vault (the biometric never leaves your device).
Network identity: pseudonymous swarm handle plus per-device key fingerprint that you can rotate at any time.
Anomaly detection: rate limits, integrity hashes on swarm payloads, and IP-hashed audit entries (we never store the raw IP).
Sub-processor isolation: payment data is tokenized by FamousPay; we never store full card numbers or banking credentials.
Data minimization: we collect only what is required to run the Service and run a cron sweep that purges expired signals, observability logs, and abandoned sessions.
6. Sharing & sub-processors
We share information only with vetted sub-processors strictly as needed:
Supabase — authentication, database, and storage hosting (USA / EU regions).
FamousPay — payment processing, card tokenization, and hosted receipt URLs.
Apple App Store / Google Play — in-app purchase receipts and subscription lifecycle.
Cloud infrastructure & email providers — for transactional delivery and crash reporting.
Law enforcement or regulators — only when compelled by valid legal process.
7. GDPR rights (European Economic Area, UK, Switzerland)
If you are located in the EEA, UK, or Switzerland, you have the following rights under the GDPR / UK GDPR:
Right of access — request a copy of the personal data we hold about you.
Right to rectification — correct inaccurate or incomplete data.
Right to erasure ("right to be forgotten") — request that we delete your account and personal data.
Right to restrict processing — temporarily limit how we use your data.
Right to data portability — receive your data in a machine-readable format.
Right to object — to processing based on legitimate interests, including marketing.
Right to withdraw consent at any time, without affecting prior lawful processing.
Right to lodge a complaint with your local supervisory authority.
8. CCPA / CPRA rights (California residents)
If you are a California resident, you have the following rights under the California Consumer Privacy Act as amended by the CPRA:
Right to know what personal information we collect, use, disclose, and sell.
Right to delete personal information we have collected, subject to legal exceptions.
Right to correct inaccurate personal information.
Right to opt out of "sale" or "sharing" of personal information — TradeSense AI does not sell your personal information and does not share it for cross-context behavioral advertising.
Right to limit use of sensitive personal information (e.g., precise location, account credentials).
Right to non-discrimination — we will not deny service, charge different prices, or provide a different quality of service because you exercised your rights.
9. How to exercise your data rights
You can exercise most rights instantly from inside the app:
Access & export: Account → Invoices & receipts (export receipts) and contact privacy@tradesense.ai for a full data export.
Correction: update email, password, and profile photo from Account.
Deletion: Account → Delete account triggers immediate erasure of AI decisions and preferences, and queues your auth record for hard deletion within 14 days.
Marketing opt-out: Use the unsubscribe link in any marketing email, or email privacy@tradesense.ai.
10. Data retention
We retain personal information only for as long as necessary to provide the Service and meet legal obligations. Default retention windows:
Account & profile data: until you delete your account, then 14 days for backup expiry.
Financial records (deposits, withdrawals, invoices): 7 years to satisfy tax and AML obligations.
AI decision history: until you delete it from /history or close your account.
Webhook & observability logs: 90 days, then automatically purged.
Marketing analytics: 24 months.
11. Security
We protect your data with TLS 1.2+ in transit, AES-256 at rest, row-level security on every database table, optional biometric lock, and TOTP-based two-factor authentication. Despite our efforts, no internet service is 100% secure — please use a strong unique password and enable 2FA.
12. International transfers
Personal data may be processed in the United States and other countries outside your home jurisdiction. Where required, we use Standard Contractual Clauses or equivalent safeguards approved by your regulator.
13. Children
TradeSense AI is not directed to anyone under 18. We do not knowingly collect personal data from minors. If you believe a minor has used the Service, contact privacy@tradesense.ai and we will delete the account.
14. Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be communicated via in-app notification or email at least 14 days before they take effect.
Questions or data requests?
Email privacy@tradesense.ai and we'll respond within 30 days. GDPR & CCPA deletion requests are processed within 14 days.
·
·
Manage cookie preferences
© 2026 TradeSense AI · All rights reserved.