Privacy Policy

1. Introduction

TheTradersHeaven (“we”, “us”, or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our prop-firm comparison, trading journal, and related tools (the “Service”). By using the Service, you consent to the practices described here. If you do not agree, please do not use the Service.

TheTradersHeaven is an independent information and journaling platform. We are not a broker or a proprietary trading firm. We do not hold your funds, execute trades, or connect to your broker or prop-firm trading account — trades are logged manually by you.

2. Information We Collect

2.1 Information you provide

• Account information: username, email address, and profile details you provide at registration.
• Authentication data: handled by our authentication provider (Supabase Auth) or by Google/Discord if you sign in with them. We do not store your password in plain text.
• Journal content: the prop-firm accounts you add and the trades, notes, tags, emotions, and observations you log.
• Profile & preferences: country, timezone, currency, theme, and display settings.
• Payment information: if you purchase a paid plan, billing is processed by Stripe. We do not store your full card number.
• Support messages: anything you send us by email or through support channels.

2.2 Information collected automatically

• Approximate location: to power the “which firms are available in your country” feature, we send your IP address to a third-party IP-geolocation service to estimate your country. You can override the detected country at any time.
• Usage data: pages visited, features used, and basic interaction patterns.
• Device & session data: browser type, operating system, device type, IP address (for security), and login times.
• Diagnostics: application errors and performance metrics to keep the Service reliable.

2.3 Information from third parties

• Google / Discord sign-in: if you use these, we receive your name, email, and profile picture from the provider.
• Affiliate referrals: if you arrive via or use one of our affiliate links or codes, we may receive attribution data confirming the referral.

Local storage note: during our pre-launch phase, some data (such as your journal entries, preferences, and detected country) is stored locally in your own browser. As we roll out cloud accounts, this data will move to our secure database.

3. How We Use Your Information

• Provide and maintain the Service — your journal, analytics, and comparisons.
• Auto-calculate prop-firm rules (consistency, drawdown, targets) for the accounts you add.
• Show which firms are available in your region.
• Personalise your experience (timezone, currency, theme).
• Process payments and manage subscriptions (via Stripe), if you choose a paid plan.
• Attribute affiliate referrals and, where applicable, unlock features tied to a referred purchase.
• Communicate account, security, and service updates.
• Improve the Service and detect, prevent, or address fraud, abuse, and security issues.
• Comply with legal obligations.

4. How We Share Your Information

We do not sell your personal information. We share data only with service providers who help us operate, and where required by law:

• Supabase — authentication and database hosting.
• Stripe — payment and subscription processing.
• Cloud hosting (e.g., Vercel) — application hosting and delivery.
• IP-geolocation provider — receives your IP to estimate your country for the availability feature.
• Email provider — to send account and service messages.

We may also disclose information to comply with the law, enforce our Terms, protect rights and safety, or as part of a merger, acquisition, or sale of assets (we will notify you of any such change).

5. Data Security

We use appropriate technical and organisational measures to protect your data: encryption in transit (TLS/HTTPS), access controls, and reputable infrastructure providers. Payment data is handled exclusively by Stripe (PCI-DSS compliant) — we never see or store full card numbers. No method of electronic storage or transmission is 100% secure, but we work to promptly address any security incidents.

6. Data Retention

• Account & journal data: retained while your account is active; deleted when you close your account (subject to legal exceptions).
• Payment records: retained as required by tax and financial law (typically up to 7 years).
• Security & session logs: retained for a limited period for fraud prevention and security.
• Aggregated, anonymised analytics: may be retained to improve the Service.

7. Your Rights & Choices

Depending on where you live (including under the EU/UK GDPR and India's Digital Personal Data Protection Act), you may have the right to access, correct, export, or delete your personal data, and to object to or restrict certain processing. You can edit your profile and journal directly in the Service, and you can request a copy or deletion of your data by contacting us. Service-critical messages (security alerts, Terms changes) cannot be opted out of while your account is active.

8. Cookies & Local Storage

• Essential: required for sign-in and session management.
• Preferences: store settings such as theme, country, and timezone (some kept in your browser's local storage).
• Affiliate: remember a referral code so a qualifying purchase is attributed correctly.

We do not use third-party advertising cookies and we do not sell data to advertisers.

9. Children's Privacy

The Service is not intended for anyone under 18. We do not knowingly collect data from children. If you believe a minor has provided us information, contact us and we will delete it.

10. International Data Transfers

Your data may be stored and processed in countries other than your own, where our providers operate. By using the Service, you consent to such transfers, and we take steps to ensure appropriate safeguards under applicable data-protection laws.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated version here and revise the effective date; for significant changes we will provide additional notice. Continued use after changes are posted means you accept the revised policy.

12. Contact Us

Questions or requests about your data? Email support@thetradersheaven.com.