Privacy Policy

AlgoKits ("we," "our," or "us") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

By using AlgoKits, you consent to the data practices described in this policy. If you do not agree with this policy, please do not use our service.

2.1 Account Information: When you create an account, we collect:

• Email address
• Name (optional)
• Password (encrypted)
• License key (automatically generated)

2.2 Payment Information: Processed securely through Stripe:

• Billing address
• Payment method details (card last 4 digits only)
• Transaction history

2.3 Usage Information: Automatically collected when EAs connect:

• MT5 account numbers (for license validation)
• EA validation timestamps
• IP addresses (for security and rate limiting)
• EA error logs and performance metrics

2.4 Technical Information: For service improvement:

• Browser type and version
• Operating system
• Device information
• Cookies and similar tracking technologies

We use collected information to:

• Provide Services: Authenticate users, validate licenses, and deliver Expert Advisors
• Process Payments: Handle subscriptions, billing, and refunds through Stripe
• Prevent Fraud: Detect and prevent unauthorized access and license abuse
• Improve Service: Analyze usage patterns to enhance features and fix bugs
• Communications: Send account updates, security alerts, and service announcements
• Legal Compliance: Meet regulatory requirements and respond to legal requests

4.1 We DO NOT sell your personal information. We share data only in these circumstances:

• Service Providers: Trusted third parties who assist our operations (Stripe for payments, Supabase for database, Vercel for hosting)
• Legal Requirements: When required by law, court order, or government request
• Protection: To protect our rights, property, safety, or that of our users
• Business Transfer: In connection with a merger, acquisition, or sale of assets
• Consent: With your explicit permission

We implement industry-standard security measures:

• TLS/SSL encryption for all data transmissions
• Encrypted password storage using bcrypt
• Secure API endpoints with rate limiting
• Regular security audits and updates
• Limited access to personal data (need-to-know basis)
• PCI-compliant payment processing through Stripe

While we strive to protect your information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security but will notify you of any breaches as required by law.

We retain your information for as long as necessary to provide services and comply with legal obligations:

• Account Data: Retained while your account is active plus 30 days after deletion
• Transaction Records: Kept for 7 years for tax and legal compliance
• EA Logs: Stored for 90 days for debugging and support
• Security Logs: Maintained for 1 year for fraud prevention

You have the following rights regarding your personal information:

• Access: Request a copy of your personal data
• Correction: Update inaccurate or incomplete information
• Deletion: Request deletion of your account and associated data
• Portability: Receive your data in a structured, machine-readable format
• Opt-out: Unsubscribe from marketing communications
• Restriction: Limit how we process your information

To exercise these rights, contact us at [email protected]. We will respond within 30 days.

We use cookies and similar technologies to:

• Maintain your session and authentication state
• Remember your preferences and settings
• Analyze site traffic and usage patterns
• Prevent fraud and enhance security

Types of Cookies:

• Essential: Required for basic site functionality
• Performance: Help us improve site performance
• Functional: Remember your choices and preferences

You can control cookies through your browser settings, but disabling essential cookies may affect site functionality.

Your information may be transferred to and processed in countries other than your own. These countries may have different data protection laws. By using our service, you consent to such transfers.

We ensure appropriate safeguards are in place, such as standard contractual clauses approved by relevant authorities.

AlgoKits is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we discover that a child has provided us with personal information, we will delete it immediately.

If you believe we have collected information from a child, please contact us at [email protected].

We use the following third-party services:

• Stripe: Payment processing (see Stripe's Privacy Policy)
• Supabase: Database and authentication (see Supabase's Privacy Policy)
• Vercel: Website hosting (see Vercel's Privacy Policy)
• Cloudflare: API protection and CDN (see Cloudflare's Privacy Policy)

These services have their own privacy policies. We encourage you to review them.

California residents have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected
• Right to know if personal information is sold or disclosed
• Right to opt-out of the sale of personal information
• Right to non-discrimination for exercising privacy rights

To exercise these rights, California residents can contact us at [email protected] or call 1-800-XXX-XXXX.

If you are located in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

• Legal basis for processing is contract performance and legitimate interests
• Right to lodge a complaint with supervisory authorities
• Right to withdraw consent at any time
• Right to object to processing based on legitimate interests

We may update this Privacy Policy from time to time. We will notify you of material changes by:

• Posting the new policy on this page
• Updating the "Effective Date" at the top
• Sending an email notification for significant changes

Continued use of our service after changes constitutes acceptance of the updated policy.

For privacy-related questions or concerns, contact us at:

We aim to respond to all privacy inquiries within 30 days.