Privacy Policy

Account Data (via Google OAuth):

• Email address
• Full name (as provided to Google)
• Profile photo URL
• Google account ID (for authentication only)

Platform Activity Data:

• Subscription plan and payment history (USDT/USDC transaction hashes)
• Prop challenge participation and performance metrics
• Trade journal entries and statistics
• Tool usage patterns (pages visited, features used)
• Alerts and notification preferences

Technical Data:

• IP address and approximate geographic region
• Browser type and version
• Device type and operating system
• Session timestamps and duration

Exchange API Keys (optional):

• Encrypted API keys submitted for copy trading (AES-256-GCM encrypted at rest)
• Associated account identifiers (UID) for conflict detection

• Authentication: To verify your identity and secure your account
• Service delivery: To provide access to tools, analytics, and challenges based on your subscription
• Prop challenges: To track your challenge progress, enforce rules, and process payouts
• Communications: To send transactional emails (challenge updates, payout notifications, account alerts)
• Security: To detect fraud, abuse, and enforce our Terms of Use
• Analytics: To improve Platform performance and user experience
• Payments: To verify crypto transactions and process subscription billing

We do not sell, rent, or share your personal data with third parties for marketing purposes.

We use the following third-party services that may process your data:

• All data is stored on a private VPS server — not on shared cloud infrastructure
• Exchange API keys are encrypted using AES-256-GCM with server-side keys
• All data in transit is protected by TLS 1.3 (HTTPS)
• Passwords are never stored — authentication is handled entirely by Google OAuth
• Access to production data is restricted to authorised administrators only
• Regular security audits are performed

• Active accounts: Data is retained for the duration of your account
• After account deletion: Personal data is deleted within 30 days
• Financial records: Transaction records may be retained for up to 7 years for legal compliance
• API keys: Deleted immediately upon account deletion or manual removal from dashboard

Depending on your jurisdiction, you may have the right to:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your account and associated data
• Portability: Request your data in a machine-readable format
• Objection: Object to certain types of processing
• Withdrawal: Withdraw consent where processing is based on consent

To exercise any of these rights, contact us via Telegram @artio_ssl. We will respond within 30 days.

We use minimal, essential cookies only:

• Session cookie: Maintains your authenticated session (expires on browser close or logout)
• CSRF token: Security token to protect against cross-site attacks

We do not use tracking, advertising, or analytics cookies from third parties.

The Platform is not directed at individuals under the age of 18. We do not knowingly collect personal data from minors. If you believe a minor has created an account, please contact us immediately for removal.

We may update this Privacy Policy from time to time. Material changes will be communicated via email or Platform notification. Continued use of the Platform after changes constitutes acceptance of the revised Policy.

For privacy-related inquiries, contact us:

• Telegram: @artio_ssl
• Platform: scalping.life/profile (support section)