1. Data Controller
2. Personal Data We Collect
a) Data you provide directly
- Name
- Email address
- Billing information
- Payment-related details (processed securely by third-party providers)
- Messages sent via email
- MT4/MT5 login, server name, and password (password encrypted at rest with AES-256-GCM; only decrypted in memory to establish the trading bridge)
b) Automatically collected data
- IP address
- Browser type and version
- Device information
- Pages visited
- Time and date of access
- Referrer URLs
- Cookies and similar technical data
c) Trading data
Metadata about the trades our bots execute on your account: symbol, direction, lot size, open and close prices, timestamps, and realised profit or loss. We do not receive or store any information about your broker deposits or withdrawals.
d) Payment and transaction data
Handled securely by third-party payment processors. We do not store full credit card numbers, CVV, or bank account details.
3. Purpose of Data Processing
- Operating and improving our website and platform
- Providing products and services
- Handling orders, payments, and authentication
- Delivering support and communication
- Sending essential service notifications
- Ensuring website and system security
- Complying with legal and regulatory obligations
We do not sell personal data.
4. Legal Basis (GDPR Art. 6)
Processing is based on:
- Contract performance
- Consent (cookies, newsletters, marketing)
- Legitimate interests (security, analytics, service optimisation)
- Legal obligations (compliance, tax, accounting)
5. Cookies & Tracking
We use cookies for:
- Essential functionality
- Analytics and performance metrics
- Fraud prevention and security
You may disable cookies through your browser settings.
6. Data Sharing
We may share data only with:
- Payment processors
- Hosting providers
- Technical infrastructure partners (e.g. MetaApi Cloud for MT4/MT5 connectivity, Resend for transactional email)
- Analytics tools
- Legal authorities (only when required)
All third parties are GDPR-compliant or meet equivalent standards.
7. International Data Transfers
If data is transferred outside the EU/EEA, it is protected through:
- Standard Contractual Clauses (SCCs)
- Adequacy decisions
- Other approved GDPR safeguards
8. Data Retention
We retain personal data only as long as necessary for:
- Service delivery
- Legal compliance
- Accounting and tax regulations
- Fraud prevention
After this period, data is securely deleted.
9. Your Rights (GDPR Art. 12-23)
You have the right to:
- Access your personal data
- Request rectification
- Request deletion ("right to be forgotten")
- Restrict processing
- Object to processing
- Data portability
- Withdraw consent at any time
- Lodge a complaint with a supervisory authority
Contact: [email protected]
10. Data Security
We implement strong technical and organisational measures to protect your information from:
- Unauthorised access
- Loss
- Misuse
- Alteration
- Disclosure
In particular, MT4/MT5 account passwords are encrypted at rest using AES-256-GCM.
11. Third-Party Payment Providers
Depending on your chosen payment method, payments may be processed by:
- Banking providers
- Crypto payment gateways
- Other authorised financial institutions
These providers operate under their own privacy and KYC/AML policies.
12. External Links
We are not responsible for the content or privacy practices of external sites linked on our website.
13. Changes to This Privacy Policy
Updates will be posted on this page with a revised "Last updated" date. Continued use of the site indicates your acceptance of updated terms.
14. Contact
For all privacy-related matters, please contact: