Privacy Policy

Effective Date: July 29, 2025 • Last Updated: April 28, 2026

TraderScript (“we”, “our”, or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the TraderScript mobile application and related web services (collectively, the “App”).

By using TraderScript, you agree to the collection and use of information in accordance with this policy.

1. Two Modes of Use

TraderScript operates in two distinct modes that affect what data we collect:

• Free / Manual Mode: No account is created and no personal data is collected. All data (trading plans, session rules) is stored locally on your device using on-device storage. We have no access to this data.
• Pro Mode: Requires account creation (email address) and a paid subscription. Data is synced to our cloud infrastructure to enable broker connectivity and cross-device access.

2. Information We Collect (Pro Mode Only)

a) Account Information

We collect your email address to create and manage your account, authenticate you, and send essential service communications (e.g. password resets, subscription notices). We do not collect your real name or phone number.

b) Trading Plan & Rule Data

We store the trading rules, session windows, and loss limits you define within the app. This data is used solely to power the app's enforcement and blocking features.

c) Broker Credentials (MetaAPI Sync)

If you connect your MetaTrader broker account, your MT5 login credentials are encrypted and stored in a secrets vault (Supabase Vault). These credentials are used exclusively in read-only mode to retrieve your trade and P&L data for the purpose of evaluating your self-defined rules. TraderScript cannot place, modify, or cancel trades on your behalf.

d) Trade & Position Data

We sync trade history and open position data from your connected broker account via MetaAPI. This data is used to evaluate whether your trading rules have been breached and to enforce session blocking. It is not shared with third parties or used for any advisory purpose.

e) Subscription & Billing Data

Subscription payments are processed by Paddle, our payment provider. We do not store your credit card details. We receive subscription status and transaction metadata from Paddle to manage your access to Pro features.

f) App Usage & Device Data

We collect device type, OS version, app version, and crash logs to maintain and improve app stability.

3. How We Use Your Information

• To create and manage your account
• To sync and enforce your trading rules and session plans
• To evaluate your broker data against your self-defined rules
• To process subscription payments and manage access
• To diagnose crashes and improve app performance
• To send essential service emails (no marketing without consent)

4. Third-Party Services

We use the following third-party services to operate the app:

• Supabase — Cloud database, authentication, and secrets vault. Data is encrypted in transit and at rest.
• MetaAPI — Read-only broker connectivity for MT5 account data. Credentials are passed securely and used solely to retrieve trade data.
• Paddle — Payment processing and subscription management. Paddle acts as the merchant of record for all transactions.
• Sentry — Crash reporting and error monitoring. Crash data may include device metadata and anonymised stack traces.
• PostHog — Product analytics. We use PostHog to understand feature usage and improve the app. No personally identifiable information is shared with PostHog beyond anonymised usage events.

We do not sell your data to any third party.

5. Data Storage & Security

All cloud data is encrypted in transit (TLS) and at rest. Broker credentials are stored in an encrypted secrets vault and never exposed in plain text. Passwords are hashed and never stored in plain text.

Free / Manual Mode data never leaves your device.

6. Data Retention

Your data is retained for as long as your account is active. If your subscription lapses or you cancel, your account data is retained for a grace period before permanent deletion. You may request immediate deletion at any time by contacting us.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your account and data
• Export your data in a portable format
• Withdraw consent for analytics collection

To exercise any of these rights, contact us at [email protected].

8. Children's Privacy

TraderScript is not intended for users under the age of 18. We do not knowingly collect personal data from minors. If you believe a minor has provided us with personal data, please contact us and we will delete it promptly.

9. International Users

TraderScript is operated from Canada. If you are accessing the app from the European Union or other regions, please be aware that your data may be transferred to and processed in Canada. We comply with applicable data protection laws, including GDPR where applicable.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or an in-app notice. Continued use of the app after the effective date of any update constitutes acceptance of the revised policy.

11. Contact Us

If you have any questions about this Privacy Policy, please contact us at:

• Email: [email protected]
• Website: traderscript.ai