Your Privacy Matters
At AiCapital, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and web platform.
Effective Date: January 1, 2025
Last Updated: April 4, 2026
Version 1.0 - Google Play Store Compliant
Table of Contents
1. Information We Collect
Personal Information
- •Account Information: Name, email address, password (encrypted)
- •Profile Data: User preferences, settings, profile picture
- •Authentication Data: Google OAuth tokens (if using Google Sign-In)
Financial and Investment Data
- •Portfolio Information: Stock holdings, investment amounts, portfolio performance
- •Investment Preferences: Risk tolerance, investment goals, trading strategies
- •Transaction History: Buy/sell decisions, portfolio adjustments
- •Watchlists: Stocks you're monitoring and alert preferences
Usage and Device Information
- •Device Data: Device type, operating system, unique device identifiers
- •Usage Analytics: Features used, time spent, interaction patterns
- •Technical Data: IP address, browser type, app version
- •Location Data: Country/region for regulatory compliance (not precise location)
Communication Data
- •Email Communications: Notification preferences, email history
- •Push Notifications: Notification tokens, alert preferences
- •Customer Support: Support tickets, feedback, inquiries
2. How We Use Your Information
We use your information for the following purposes:
Service Provision
- →Create and manage your account
- →Provide portfolio management and AI-powered investment recommendations
- →Process and display your investment data
- →Send important notifications about portfolio changes and alerts
Service Improvement
- →Analyze usage patterns to improve our AI algorithms
- →Develop new features based on user behavior
- →Optimize app performance and user experience
- →Conduct research and analytics
Communication
- →Send welcome emails and onboarding information
- →Deliver portfolio alerts and SELL/BUY recommendations
- →Provide customer support and respond to inquiries
- →Send important updates about our services
Security and Compliance
- →Prevent fraud and unauthorized access
- →Comply with legal obligations and regulations
- →Enforce our Terms of Service
- →Monitor for suspicious activities
3. Data Sharing and Third Parties
⚠️ We DO NOT sell your personal data to third parties
We may share your information with trusted third parties only in the following circumstances:
Service Providers
We share data with vendors who help us operate our platform:
- • Cloud hosting providers (MongoDB Atlas, Render, Vercel)
- • Email service providers (for notifications)
- • Payment processors (Stripe - see Section 11)
- • Analytics services (for performance monitoring)
- • Authentication providers (Google OAuth)
Market Data Providers
We obtain real-time stock data from third-party financial data providers (Alpha Vantage, Finnhub, Financial Modeling Prep). We do not share your personal information with these providers.
Legal Requirements
We may disclose your information if required by law, court order, or government request, or to protect our rights, property, or safety.
Business Transfers
In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information is transferred and becomes subject to a different privacy policy.
4. Data Security
We implement industry-standard security measures to protect your data:
🔐 Encryption
All data transmitted between your device and our servers is encrypted using TLS/SSL. Passwords are hashed using bcrypt.
🛡️ Access Controls
Strict access controls ensure only authorized personnel can access your data. We use role-based permissions.
💾 Secure Storage
Data is stored in secure, encrypted databases with regular backups and disaster recovery plans.
🔍 Monitoring
Continuous security monitoring for suspicious activities, unauthorized access attempts, and potential breaches.
🔄 Regular Audits
Regular security audits, vulnerability assessments, and penetration testing.
👨💻 Employee Training
All employees receive security training and sign confidentiality agreements.
Note: While we implement strong security measures, no system is 100% secure. We encourage you to use strong passwords and enable two-factor authentication.
5. Your Privacy Rights
Depending on your location, you may have the following rights regarding your personal data:
✅ Right to Access
Request copies of your personal data and information about how we process it.
✏️ Right to Rectification
Correct inaccurate or incomplete personal data we hold about you.
🗑️ Right to Erasure
Request deletion of your personal data (subject to legal obligations).
⏸️ Right to Restriction
Limit how we process your personal data in certain circumstances.
📤 Right to Portability
Receive your data in a structured, machine-readable format.
🚫 Right to Object
Object to processing of your data for certain purposes.
🤖 Automated Decisions
Request human review of automated decisions (like AI recommendations).
❌ Right to Withdraw Consent
Withdraw consent for data processing at any time.
How to Exercise Your Rights: Contact us at privacy@ai-capital.com or through your account settings. We will respond within 30 days.
6. Data Retention
We retain your data for as long as necessary to provide our services and comply with legal obligations:
Account Data
Active + 7 yearsRetained while your account is active, plus 7 years after closure for regulatory compliance.
Portfolio Data
Active + 7 yearsInvestment history retained for tax and regulatory purposes.
Usage Analytics
2 yearsAggregated analytics data retained for service improvement.
Customer Support
5 yearsSupport tickets and communications retained for reference.
Marketing Data
Until unsubscribeDeleted immediately upon unsubscribe or account closure.
You can request earlier deletion of your data by contacting us, subject to our legal obligations.
7. International Data Transfers
Your data may be transferred to and processed in countries outside your residence, including the United States. We ensure appropriate safeguards are in place:
🇪🇺 For EU/EEA Users
We use Standard Contractual Clauses (SCCs) approved by the European Commission to protect your data when transferred outside the EEA.
🇺🇸 For US Users
We comply with applicable US privacy laws including CCPA and state-specific regulations.
🌍 Global Standards
All our data processors are contractually bound to protect your data according to GDPR standards, regardless of their location.
8. Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your experience:
Essential Cookies (Required)
Necessary for platform functionality and security:
- • Authentication and session management
- • Security and fraud prevention
- • Load balancing and performance
Analytics Cookies (Optional)
Help us understand how you use our platform:
- • Usage patterns and feature popularity
- • Performance monitoring
- • Error tracking and debugging
Preference Cookies (Optional)
Remember your settings and preferences like theme, language, and dashboard layout.
Manage Cookies: You can control cookie preferences through your browser settings. Note that disabling essential cookies may affect platform functionality.
9. Children's Privacy
Our service is NOT intended for users under 18 years of age.
AiCapital is a financial platform intended for adults (18+) only. We do not knowingly collect personal information from children under 18.
If we become aware that we have collected personal information from a child under 18, we will:
- • Delete the account immediately
- • Remove all associated data from our systems
- • Notify the parent or guardian if possible
If you believe we have inadvertently collected information from a minor, please contact us immediately at privacy@ai-capital.com
10. Third-Party Services
Our platform integrates with the following third-party services:
🔐 Google OAuth
For secure sign-in. See Google's Privacy Policy
💳 Stripe
For payment processing. See Stripe's Privacy Policy
📊 Financial Data Providers
Alpha Vantage, Finnhub, and Financial Modeling Prep for real-time market data. We do not share your personal information with these providers.
☁️ Cloud Infrastructure
MongoDB Atlas, Render, and Vercel for hosting and data storage. All providers are GDPR-compliant.
📧 Email Service
Professional email service for notifications and alerts. All communications are encrypted.
11. Payment Processing
✅ We do NOT store your credit card information on our servers.
All payment processing is handled securely by Stripe, a PCI-DSS compliant payment processor:
What Stripe Collects:
- • Payment card information (encrypted)
- • Billing address
- • Transaction history
What We Store:
- • Subscription status (active/inactive)
- • Subscription tier (Free/Premium/Premium Plus)
- • Payment history (without card details)
- • Stripe customer ID (encrypted)
For more information, see Stripe's Privacy Policy
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.
When We Update This Policy:
- • Update the "Last Updated" date at the top
- • Notify you via email for material changes
- • Display a prominent notice in the app
- • Require acceptance for significant changes
Your continued use of our services after the effective date of changes constitutes acceptance of the updated policy. If you do not agree with the changes, you should stop using our services and contact us to delete your account.
Version History: Previous versions of this policy are available upon request at privacy@ai-capital.com
13. Contact Us
For questions, concerns, or to exercise your privacy rights, please contact us:
🌐 Online
Within 30 days (GDPR requirement)
For EU/EEA Users: You also have the right to lodge a complaint with your local data protection authority if you believe your rights have been violated.