Privacy Policy

At PossTrading, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, store, and protect your data when you use our mobile application and services.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

• Email address (required for account creation and authentication)
• User ID (automatically generated)
• Account preferences and settings

1.2 Exchange API Credentials

To connect your trading accounts, we collect:

• Exchange API keys and secrets (Binance, OKX, etc.)
• API passphrases (where applicable)
• Account names and platform identifiers

1.3 Trading Data

When you sync your trading accounts, we collect:

• Transaction history (positions, trades, orders)
• Account balances and equity information
• Realized and unrealized profit/loss data
• Historical trading data (up to 90 days)

1.4 User-Generated Content

You may create and store:

• Custom tags for organizing trades
• Notes and annotations about your trading strategies
• Images and screenshots related to your trades
• Manual edits to trading data

1.5 Usage and Technical Data

We automatically collect:

• Error logs and crash reports (via Sentry)
• App usage analytics
• Device information (platform, OS version)
• App version information
• User feedback and support requests

2. How We Use Your Information

We use the collected information for the following purposes:

• Service Provision: To provide and maintain our trading analysis services, including data synchronization, performance calculations, and data visualization
• Account Management: To authenticate users, manage accounts, and maintain user preferences
• Data Analysis: To calculate performance metrics (PnL, win rate, ROI, MDD, etc.) and generate analytics reports
• Service Improvement: To analyze error logs and user feedback to improve app functionality and fix bugs
• Communication: To respond to your inquiries and provide customer support
• Security: To detect and prevent fraud, unauthorized access, and other security threats

3. Data Storage and Security

3.1 Data Storage

Your data is stored securely using the following infrastructure:

• Database: Trading data, user accounts, and metadata are stored in MySQL databases with encryption at rest
• File Storage: Images and user-uploaded files are stored on AWS S3 with appropriate access controls
• Encryption: All API credentials are encrypted before storage using industry-standard encryption algorithms

3.2 Security Measures

We implement various security measures to protect your data:

• Encryption of sensitive data (API keys, secrets)
• Secure authentication and authorization mechanisms
• Regular security audits and updates
• Access controls and authentication requirements
• Secure API communication using HTTPS

4. Data Sharing and Third-Party Services

4.1 Third-Party Services

We use the following third-party services that may have access to certain data:

• AWS S3: For storing user-uploaded images and files. AWS S3 is subject to AWS's privacy policy and security standards.
• Sentry: For error tracking and crash reporting. Sentry may collect error logs, device information, and app usage data. Sentry's privacy policy applies to this data.
• Exchange APIs: We connect to Binance, OKX, and other exchange APIs to retrieve your trading data. These connections are made using your provided API credentials.

4.2 Data Sharing Policy

We do not sell, trade, or rent your personal information to third parties. We may share data only in the following circumstances:

• With your explicit consent
• To comply with legal obligations or court orders
• To protect our rights, property, or safety, or that of our users
• With service providers who assist in operating our services (under strict confidentiality agreements)

5. Your Rights and Choices

You have the following rights regarding your personal data:

• Access: You can access and review your personal data through the app
• Correction: You can update or correct your account information and trading data
• Deletion: You can delete your account and associated data at any time
• Data Export: You can request a copy of your data
• Withdrawal of Consent: You can revoke API access by removing your exchange accounts
• Opt-out: You can disable error reporting and analytics in your device settings

To exercise these rights, please contact us at faq@posstrading.com.

6. Data Retention

We retain your data for as long as your account is active or as needed to provide our services. When you delete your account:

• Your account information and user-generated content will be deleted
• Trading data will be permanently removed from our systems
• Some data may be retained for legal or regulatory purposes for a limited period

7. Children's Privacy

Our services are not intended for users under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

8. International Data Transfers

Your data may be transferred to and stored on servers located outside your country of residence. By using our services, you consent to the transfer of your data to these locations. We ensure appropriate safeguards are in place to protect your data.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the updated policy on this page
• Updating the "Last Updated" date
• Sending notifications through the app (for significant changes)

Your continued use of our services after changes become effective constitutes acceptance of the updated policy.

10. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: faq@posstrading.com

We will respond to your inquiries within a reasonable timeframe.