← Back to home

Privacy Policy

Last updated: placeholder — set this when you finalize this policy.
Generic starting template, not legal advice. If you have EU/UK users, review GDPR obligations; California users, review CCPA. Have a lawyer confirm this matches what the app actually collects before publishing.

1. What we collect

Account email address, hashed password, subscription status, and — if you enable auto-trading — the MT5 account credentials and trade history you provide, stored on our server (encrypted at rest) to run signal generation and, optionally, trade execution on your behalf.

2. Google Sign-In

If you sign in with Google, we receive your verified email address from Google/Firebase. We do not receive or store your Google password.

3. How we use it

To operate your account, generate and deliver trading signals, process subscription billing, and — if enabled — place trades via your connected MT5 account. We do not sell your data to third parties.

4. Payment data

Payments are processed by our payment provider (NOWPayments). We do not store your payment card or wallet credentials on our servers.

5. Data retention

We retain account and trade history data for as long as your account is active, plus a reasonable period afterward for legal/accounting purposes. You may request deletion by contacting support.

6. Security

Passwords are stored using salted PBKDF2 hashing, not plaintext. Sensitive configuration (broker credentials) is encrypted at rest. No method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

7. Contact

Questions about this policy or a data request? See Contact Support.