Privacy Policy

1. Data We Collect

• Account data: Email address, name, and password hash when you register.
• Portfolio data: Asset allocations and backtest results you choose to save.
• Usage data: Page views, feature interactions, and anonymized analytics.
• Payment data: Processed securely by Stripe. We never store full card numbers.

2. How We Use Your Data

• Provide and improve the portfolio backtesting service.
• Process subscription payments via Stripe.
• Send important account notifications (no marketing spam).
• Analyze usage patterns to improve the product.

3. Data Storage & Security

Your data is stored securely on Neon (serverless PostgreSQL) with encrypted connections. Passwords are hashed using bcrypt. All communication uses HTTPS/TLS encryption.

4. Third-Party Services

• Stripe — Payment processing
• Neon — Database hosting
• Vercel — Application hosting and analytics
• Yahoo Finance — Market data (no personal data shared)

5. Your Rights (GDPR)

As an EU resident, you have the right to:

• Access your personal data
• Correct inaccurate data
• Request deletion of your data
• Export your data in a portable format
• Object to data processing

Contact us at privacy@vesta-covarianz.com to exercise these rights.

6. Cookies

We use essential cookies for authentication sessions. No third-party tracking cookies are used. Analytics are collected anonymously via Vercel Analytics.