← Back to Home

Privacy Policy

Last updated: 5 March 2026

1. Information We Collect

We collect the following categories of information:

  • Account data: Name, email address, phone number (provided during signup).
  • Portfolio data: Stock tickers, quantities, and average buy prices you add to your portfolios.
  • Usage data: AI query counts, feature usage, and session activity for rate-limiting and analytics.
  • Payment data: Processed by Razorpay. We store transaction IDs and subscription status but never store card numbers or bank details.

2. How We Use Your Information

  • To provide and maintain the Platform services (reports, portfolio tracking, AI chat).
  • To process subscription payments and manage billing.
  • To send transactional emails (email verification, password resets, payment confirmations).
  • To enforce usage limits and prevent abuse.
  • To improve the Platform based on aggregated, anonymized usage patterns.

We do not sell, rent, or share your personal data with third-party advertisers.

3. Data Storage & Security

Your data is stored on cloud-hosted PostgreSQL databases with encryption at rest. Access tokens are stored in-memory (never in localStorage). Refresh tokens are httpOnly cookies inaccessible to JavaScript. Passwords are hashed with bcrypt (12 salt rounds).

4. Third-Party Services

We use the following third-party services:

  • Razorpay — Payment processing (governed by Razorpay's privacy policy).
  • Resend — Transactional email delivery.
  • Google Gemini — AI-generated market summaries and chat responses (no personal data is sent to Gemini; only market data and anonymized queries).

5. Cookies

We use a single httpOnly cookie (refresh_token) for authentication session management. We do not use third-party tracking cookies or analytics cookies.

6. Data Retention

  • Account data is retained as long as your account exists.
  • Market data snapshots and stock news are retained for 7 days (rolling window).
  • AI chat conversations are stored in your browser's sessionStorage and are cleared when you close the tab.
  • Upon account deletion, all personal data is permanently removed (cascading delete).

7. Your Rights

You have the right to:

  • Access and update your personal information via Account Settings.
  • Delete your account and all associated data via Account Settings.
  • Request a copy of your data by contacting us.

8. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated “Last updated” date. Continued use of the Platform after changes constitutes acceptance.

9. Contact

For privacy-related questions, contact us at hello@themarketsnap.com.