Privacy Policy

We collect information you provide directly to us when you create an account, use our services, or contact us for support. Account Information When you create an account, we collect your email address, name, and authentication credentials through our identity provider (Clerk). Trading Data We store the trading data you choose to log, including trade entries/exits, profit/loss figures, notes, screenshots, strategies, and session information. This data is yours and is never shared with third parties. Usage Information We automatically collect information about how you interact with our service, including pages visited, features used, and session duration. This helps us improve the product. Device Information We collect device information such as browser type, operating system, and IP address for security and analytics purposes.

We use the information we collect to: - Provide our services: Store and display your trading journal, analytics, and insights - Improve our product: Analyze usage patterns to enhance features and user experience - Communicate with you: Send service updates, security alerts, and support responses - Ensure security: Detect and prevent fraud, abuse, and security threats - Comply with legal obligations: Meet regulatory requirements and respond to legal requests We do not sell your personal information or trading data to third parties. We do not use your trading data to make investment recommendations or share it with brokers.

Your data is stored securely using industry-standard practices: Infrastructure - Data is stored in Supabase (PostgreSQL) with encryption at rest - All connections use TLS/SSL encryption in transit - Authentication is handled by Clerk with secure session management Access Controls - Row-level security ensures you can only access your own data - Service credentials are stored securely and rotated regularly - Administrative access is logged and audited Data Centers Our infrastructure providers maintain SOC 2 compliance and operate secure, redundant data centers.

We share your information only in the following circumstances: Service Providers We use third-party services to operate our platform: - Clerk: Authentication and user management - Supabase: Database and storage - Vercel: Hosting and deployment These providers only access data necessary to perform their services and are bound by strict data protection agreements. Legal Requirements We may disclose information if required by law, subpoena, or other legal process, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others. Business Transfers If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

You have the following rights regarding your data: Access: You can export all your data at any time via Settings > Export Data. This provides a complete JSON export of your trades, sessions, and settings. Correction: You can edit or update any of your data directly within the application. Deletion: You can permanently delete your account and all associated data via Settings > Account > Delete Account. This action is irreversible and removes all data from our servers. Portability: Your data export is provided in a standard JSON format that can be imported into other systems or analyzed independently. Objection: You can contact us to object to certain processing activities. For EU residents, these rights are provided under GDPR. For California residents, similar rights are provided under CCPA.

We retain your data as follows: Active Accounts: Your trading data and account information are retained for as long as your account is active. Deleted Accounts: When you delete your account, all associated data is permanently removed within 30 days. Backups containing your data are purged within an additional 30 days. Logs: Server and security logs are retained for 90 days for security and debugging purposes. Anonymous Analytics: Aggregated, anonymous usage statistics may be retained indefinitely for product improvement.

We use cookies and similar technologies for: Essential Cookies: Required for authentication and basic functionality. These cannot be disabled while using our service. Analytics Cookies: Help us understand how our service is used. You can opt out of these. See our [Cookie Policy](/cookies) for detailed information about the cookies we use and how to manage your preferences.

Practice—Process is not intended for users under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us so we can delete it.

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers, including standard contractual clauses approved by relevant data protection authorities.

We may update this privacy policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date. Your continued use of the service after changes constitutes acceptance of the updated policy.

If you have questions about this privacy policy or our data practices, please contact us at: Email: privacy@practiceprocess.app Address: 28 Zetland Avenue, Zetland, NSW 2017, Australia For data protection inquiries in the EU, you may also contact your local data protection authority.