Privacy Policy
Last updated: May 22, 2026
This Privacy Policy explains what information GoliTrader collects, how we use it, and the choices you have. By using the Service you agree to this policy.
Information we collect
- Account & identity: name, email, and authentication data handled by our auth provider (Clerk); the full legal name, date of birth, and signed acknowledgement you provide when accepting our Terms.
- Billing: subscription and payment details processed by Stripe. We do not store full card numbers.
- Usage: watchlists, settings, signals viewed, and interaction/diagnostic data.
- Device & cookies: IP address, browser/device info, and cookies (see our Cookie Policy).
How we use it
- to provide, secure, and improve the Service;
- to authenticate you and process subscriptions;
- to verify eligibility (age) and record Terms acceptance;
- to communicate with you about your account; and
- to comply with legal obligations.
Service providers
We share data with vendors that operate the Service on our behalf, including Clerk (authentication), Stripe (payments), market-data providers, large-language- model / AI providers, email and SMS/messaging providers, and infrastructure/hosting providers. They are permitted to use your data only to provide their services to us, under contractual confidentiality and security obligations. We may also disclose information to comply with law, legal process, or lawful requests; to enforce our Terms; to detect, prevent, or address fraud, security, or technical issues; to protect our rights, property, or safety or that of others; and in connection with a merger, acquisition, financing, or sale of assets, in which case we will require the recipient to honor this policy.
AI & automated processing
We use automated systems and third-party AI/large-language-model providers to operate features such as GoliTrader AI and GoliQuickie. Inputs and certain usage data may be processed by these systems to generate output and improve reliability. We do not use this processing to make legally significant decisions about you. We instruct our AI providers not to use your data to train their general models except as permitted by our agreements; their use of data is governed by their terms.
We do not sell your personal information
We do not sell your personal information. See Do Not Sell My Information for more.
Data retention
We retain personal information for as long as your account is active and as needed to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements (including retaining Terms-acceptance records).
Your rights
Depending on where you live, you may have rights to access, correct, delete, or port your data, and to object to or restrict certain processing. To exercise them, contact us.
Security
We use reasonable technical and organizational measures to protect your data. No method of transmission or storage is 100% secure.
Children
The Service is not directed to anyone under 18, and we do not knowingly collect data from minors. See our Terms.
Marketing & SMS / text messages
With your consent where required, we may send you marketing emails and, if you opt in, SMS/text alerts (e.g., trade or account notifications). Message and data rates may apply; message frequency varies. You can opt out of marketing email via the unsubscribe link and of texts by replying STOP (reply HELP for help). Transactional and account messages are part of the Service and are not marketing. Consent to texts is not a condition of purchase.
Legal bases for processing (EEA / UK)
Where the GDPR or UK GDPR applies, we process personal data on these legal bases: performance of a contract (to provide the Service); legitimate interests (to secure, operate, and improve the Service and prevent fraud); consent (for certain marketing and cookies, which you may withdraw at any time); and compliance with legal obligations.
International data transfers
We and our providers may process and store data in the United States and other countries whose laws may differ from yours. Where required, we rely on appropriate safeguards (such as the EU Standard Contractual Clauses) for cross-border transfers. By using the Service you understand your data may be transferred internationally.
California privacy rights (CCPA / CPRA)
If you are a California resident, you have rights to know, access, correct, and delete personal information, and to limit certain uses, subject to exceptions. We do not sell or “share” personal information for cross-context behavioral advertising, and we do not knowingly process the personal information of consumers under 16 for such purposes. We will not discriminate against you for exercising these rights. To exercise them, contact us or see Do Not Sell My Information.
Aggregated & de-identified data
We may create and use aggregated, anonymized, or de-identified data (which does not identify you) for any lawful purpose, including analytics and improving the Service. We will not attempt to re-identify such data except as permitted by law.
Data breach
While we use reasonable safeguards, no system is perfectly secure. In the event of a personal-data breach affecting you, we will notify you and regulators as and where required by applicable law.
Changes & contact
We may update this policy; material changes will be posted here. Questions? Contact us.