Privacy Policy

Last updated: May 18, 2026

This Privacy Policy describes how AlgoEdge collects, uses, and protects information when you use our mobile app, website, or related services.

Contents

What This Covers
Information We Collect
How We Use Your Information
Third-Party Services We Use
Where Your Data Is Stored
How Long We Keep Data
Your Rights
Security
Children
Changes
Contact

1. What This Covers

This Privacy Policy describes how AlgoEdge ("we," "us," "our") collects, uses, and protects information when you use the AlgoEdge mobile app, website, or related services.

2. Information We Collect

Information you provide

Account information: email address and password (stored hashed) when you sign up
Alpaca API credentials: API key and secret key you enter to connect your paper Alpaca account
Trading preferences: bot toggles, position sizing limits, stop-loss settings

Information collected automatically

Trade activity: orders placed by our bots on your behalf, including timestamps, tickers, sides, quantities, and the politician (if applicable) that triggered each Capitol Trades order
Account snapshots: equity, cash, positions retrieved from Alpaca to display in the app
Bot heartbeats: which bots you have enabled and the last time each ran a cycle for your account
Technical data: device type, OS version, app version, IP address (transient, for security)

Information we do NOT collect

Social security numbers, banking details, or government IDs
Real-time location
Contacts, photos, microphone, camera, or other device sensors
Information about your activity outside the AlgoEdge service

3. How We Use Your Information

Operate the service: authenticate your account, execute trades on your behalf, display your portfolio and history
Improve the service: diagnose bugs, understand which features are used, plan future development
Communicate with you: account confirmations, password resets, beta announcements, security alerts (we do not send marketing emails during the beta)

We do not sell your personal information. We do not share it with third parties for their own marketing purposes.

4. Third-Party Services We Use

AlgoEdge relies on these providers to deliver the service. Each has its own privacy policy.

Supabase — authentication and database hosting
Alpaca Markets — the brokerage that holds your paper account and executes trades
Railway — backend and bot hosting infrastructure
Expo / Apple TestFlight — mobile app distribution and over-the-air updates
Apple App Store Connect — iOS app submission and TestFlight beta management

When you provide Alpaca API credentials, those credentials are stored in Supabase encrypted at rest and transmitted over TLS. They are used exclusively to place trades and read account state on your behalf.

5. Where Your Data Is Stored

Supabase project region: US West (Oregon)
Backups: managed by Supabase per their retention schedule
Logs on Railway: retained per Railway's default policy, typically 7 days

6. How Long We Keep Data

Account data: retained while your account is active. Deleted within 30 days of account deletion request.
Trade records: retained indefinitely for your historical reference unless you request deletion.
Backend logs: auto-rotated after approximately 7 days.

7. Your Rights

You may at any time:

View what we store about you in the app (Settings, Analytics)
Disconnect your Alpaca account (Settings → Alpaca account)
Toggle bots off (Bots tab) so we stop placing trades
Request account deletion by emailing info@algoedge.pro
Request a copy of your data by emailing info@algoedge.pro

If you are a California resident, the CCPA grants you additional rights to know, delete, and opt out of the sale of personal information (we do not sell). EU/UK residents have similar rights under GDPR.

8. Security

We use:

TLS for all network traffic
Encrypted storage for Alpaca credentials
Row-level security policies in Supabase so users can only access their own data
Service-role keys used only by backend services, never exposed in the mobile app

No system is perfectly secure. If we become aware of a breach affecting your data, we will notify you within 72 hours where required by law.

9. Children

AlgoEdge is not directed to children under 18. We do not knowingly collect information from anyone under 18. If you believe a minor has provided us with personal information, contact us and we will delete it.

10. Changes

We may update this policy. Material changes will be communicated in-app or by email at least 30 days before they take effect. Continued use after changes constitutes acceptance.

11. Contact

Questions, data requests, or deletion requests: info@algoedge.pro