TradaxLab logoHome

Privacy Policy

Last updated: May 2026

This policy is provided for transparency and is not legal advice. Have a qualified lawyer review it before launch.

Who we are

TradaxLab ("we", "us") operates educational trading software. Contact: support@tradaxlab.com.

What we collect

  • Account: email, display name (Firebase Authentication)
  • Workspace: journal trades, playbooks, analyst usage, settings (Firestore + local browser mirror)
  • Billing: subscription tier and Stripe customer ids (we do not store full card numbers)
  • Exchange connections: read-only API credentials, encrypted server-side when you connect Binance/Bybit
  • AI inputs: text prompts and optional chart screenshots sent to Google Gemini via our servers
  • Optional analytics: page/feature usage if you consent (see Cookie Policy)

Why we process data

  • Contract: provide the service you signed up for
  • Legitimate interests: security, abuse prevention, product improvement (with analytics consent where required)
  • Legal obligations: tax/accounting where applicable

Processors & sharing

We use trusted providers who process data on our instructions:

  • Google Firebase / Firestore (hosting, auth, database) — EU region where configured
  • Stripe (payments)
  • Google Gemini (AI analysis)
  • Financial Modeling Prep (market quotes, when configured)

We do not sell your personal data.

International transfers

Some providers may process data in the United States or other countries. Where required, we rely on appropriate safeguards (e.g. Standard Contractual Clauses offered by vendors).

Retention

Account and workspace data are kept while your account is active. After deletion (Settings → Delete account), we remove Firebase Auth, workspace, entitlements, exchange connections, and analytics we control. Backups may persist briefly per provider policies.

Security

We use HTTPS, httpOnly session cookies, server-side subscription checks, Firestore security rules that block client plan upgrades, encrypted exchange secrets, and Stripe webhook signature verification. No system is perfectly secure — use strong passwords and read-only exchange keys.

Your rights (GDPR / UK GDPR)

Depending on your location you may have rights to access, rectify, erase, restrict, object, or port your data, and to withdraw consent for optional analytics. To exercise rights, email support@tradaxlab.com from your account email. You may lodge a complaint with your supervisory authority.

Account deletion

Delete your account in Settings. This is the primary way to request erasure. You can also email us if you cannot access your account.

Cookies

See our Cookie Policy for details and consent choices.

Children

TradaxLab is not directed at children under 16. We do not knowingly collect their data.

Educational and journaling software—not personalized investment, tax, or legal advice. Past performance does not guarantee future results.