Privacy Policy

Last updated: 21 March 2026

1. Introduction

TraderDNA (“we”, “us”, “our”) respects your privacy. This Privacy Policy explains how we collect, use, and protect your personal data when you use our trading journal platform at traderdna.me (“the Service”).

2. Data We Collect

We collect the following categories of data:

  • Account data: name, email address, hashed password (or Google OAuth profile)
  • Trading data: trades, journal entries, strategies, playbooks, goals, and analytics you create
  • Broker data: encrypted API credentials and trade history synced from connected broker accounts
  • AI coaching data: coaching session conversations and AI-generated insights
  • Uploaded files: trade screenshots and chart images
  • Usage data: pages visited, features used, and technical information (browser type, IP address)
  • Payment data: processed by Whop; we store subscription status but not payment card details

3. How We Use Your Data

  • To provide, maintain, and improve the Service
  • To generate analytics and performance insights from your trading data
  • To power AI coaching features using anonymised context from your trades
  • To send notifications (email, Telegram) based on your preferences
  • To process payments and manage your subscription
  • To communicate service updates and respond to support requests

4. Third-Party Services

We use the following third-party services to operate TraderDNA:

  • Neon: database hosting (PostgreSQL)
  • Vercel: application hosting and deployment
  • Whop: payment processing
  • Google (Gemini AI): AI coaching and insight generation
  • Resend: transactional email delivery
  • Telegram: notification delivery (opt-in)
  • Cloudflare R2: file storage for uploaded images
  • MetaAPI: MT4/MT5 broker data synchronisation
  • Google OAuth: optional social sign-in

Each third-party service has its own privacy policy. We do not sell your personal data to any third party.

5. Data Security

We implement industry-standard security measures including: encrypted connections (HTTPS/TLS), hashed passwords (bcrypt), encrypted broker credentials (AES-256), JWT session tokens in signed cookies, rate limiting on sensitive endpoints, and security headers (CSP, HSTS, X-Frame-Options).

6. Data Retention

Your data is retained for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal or compliance purposes. Anonymised, aggregated data may be retained indefinitely.

7. Your Rights (GDPR)

If you are in the European Economic Area, you have the following rights:

  • Access: request a copy of your personal data
  • Rectification: correct inaccurate data
  • Erasure: request deletion of your account and data
  • Portability: export your data (available via CSV export in the app)
  • Objection: opt out of non-essential data processing

To exercise these rights, contact us at support@traderdna.me.

8. Cookies

TraderDNA uses essential cookies only: a session cookie for authentication (NextAuth JWT) and a theme preference cookie. We do not use third-party tracking cookies or advertising cookies. By using the Service, you consent to our use of essential cookies.

9. Children's Privacy

The Service is not intended for users under 18 years of age. We do not knowingly collect data from children. If we learn that we have collected data from a child under 18, we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or in-app notification. The “Last updated” date at the top reflects the most recent revision.

11. Contact

For privacy-related questions or data requests, contact us at support@traderdna.me.

← Back to home