Last updated: February 2026
We collect information you provide directly: name, email address, and password when creating an account. We also collect usage data including: pages visited, features used, analysis reports generated, and interaction patterns. We do NOT collect or store your brokerage credentials, bank account details, or social security numbers.
We use your information to: (a) provide and maintain the Service, (b) personalize your experience, (c) generate AI-powered analysis and reports, (d) send important account notifications, (e) improve our algorithms and service quality, (f) detect and prevent fraud or unauthorized access. We never sell your personal data to third parties.
We implement enterprise-grade security measures including: 256-bit AES encryption for data at rest, TLS 1.3 for data in transit, bcrypt password hashing with 12 rounds of salting, JWT session tokens with automatic expiration, role-based access controls, regular security audits, and SOC 2 Type II compliance. Our infrastructure is hosted in secure, certified data centers.
We retain your account data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal or regulatory purposes. Analysis reports and research notes are deleted along with your account. Aggregated, anonymized data may be retained for service improvement.
We use select third-party services to operate the platform: cloud hosting providers (for infrastructure), AI model providers (for analysis generation), market data providers (for real-time financial data), and email service providers (for notifications). All third-party providers are vetted for security compliance and bound by data processing agreements.
We use essential cookies for: authentication session management, theme preference storage, and security tokens. We do not use advertising cookies or third-party tracking scripts. You can manage cookie preferences through your browser settings.
Under GDPR and applicable data protection laws, you have the right to: (a) access your personal data, (b) correct inaccurate data, (c) delete your data ("right to be forgotten"), (d) export your data in a portable format, (e) restrict processing of your data, (f) object to data processing. To exercise any of these rights, contact us at privacy@finthreadsolutions.com.
The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal data from a child, we will take steps to delete that information.
Your data may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for international data transfers, including standard contractual clauses and adequacy decisions.
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically.
If you have any questions about this Privacy Policy or our data practices, please contact us at privacy@finthreadsolutions.com or by mail at FinThread Solutions, Data Protection Office.