Data Privacy

1. Information We Collect

We collect the information needed to run your account and the research terminal:

• Account information — your email address and authentication credentials, managed through our authentication provider (Google Firebase Authentication).
• Subscription & billing — your plan, billing status, and subscription identifiers. Card and payment details are collected and stored by our payment processor (Stripe). We never receive or store your full card number.
• Usage data — content you create in the product, such as saved picks, watchlists, paper-trading entries, notification preferences, and account settings.
• Technical & log data — IP address, browser/device type, and request logs generated automatically when you use the service, retained by our hosting infrastructure for security and reliability.

2. How We Use Your Information

We use your information to provide and maintain the service, authenticate your account, process and manage your subscription, send transactional and alert emails you have opted into, improve our models and product, and protect the security and integrity of the platform. We do not sell your personal information, and we do not use it for third-party advertising.

3. Service Providers We Share Data With

We share data only with the service providers (sub-processors) required to operate the platform, and only to the extent each needs to perform its function:

• Stripe, Inc. — payment processing and subscription billing.
• Google LLC (Firebase) — authentication, database storage (Firestore), and application hosting.
• Transactional email provider — delivery of account, security, and alert emails.

These providers process data on our behalf under their own data-protection terms. We may also disclose information if required by law or to protect our legal rights.

4. Cookies & Similar Technologies

We use essential cookies and local browser storage to keep you signed in and maintain your session and preferences. These are required for the terminal to function. We do not use third-party advertising or cross-site tracking cookies. We use PostHog for product analytics in cookieless mode — page views and product events are captured in-memory only, with no tracking cookies and no cross-session device identifier persisted to your browser. We do not sell or share this data.

5. Data Retention

We retain your account and usage data for as long as your account is active. If you close your account or request deletion, we delete or anonymize your personal data within a reasonable period, except where we are required to retain certain records (for example, billing and tax records) to comply with legal obligations.

6. Your Privacy Rights

Depending on where you live, you may have the right to access, correct, delete, or export your personal data, and to object to or restrict certain processing. Residents of California (CCPA/CPRA) have the right to know what we collect, to request deletion, and to opt out of the sale of personal information — and we confirm we do not sell personal information. Residents of the EEA/UK (GDPR) have corresponding rights over their data. To exercise any of these rights, contact us using the details below; we will verify your request and respond within the timeframe required by applicable law. You can also manage your subscription and many account settings directly in the product.

7. Data Security

All communication with the platform is encrypted in transit using SSL/TLS, and data is stored with our infrastructure providers under industry-standard security controls. No method of transmission or storage is perfectly secure, so while we work to protect your information, we cannot guarantee absolute security.

8. Children's Privacy

The service is intended only for adults of legal age in their jurisdiction and is not directed to children. We do not knowingly collect personal information from anyone under 18. If we learn that we have collected data from a minor, we will delete it.

9. International Data Transfers

We operate in the United States, and our service providers process data primarily in the United States. If you access the service from outside the U.S., you understand that your information will be processed in the U.S., where data-protection laws may differ from those in your country.

10. Changes to This Policy

We may update this policy from time to time. When we make material changes, we will revise the "Last updated" date above and, where appropriate, notify you. Your continued use of the service after an update means you accept the revised policy.

11. Contact Us

Questions about this policy or your data? Reach us at compliance@inningoneintel.com, or through the Support Hub.