Privacy Policy

A. Information You Provide

• Email address — when you register via email/password or Google OAuth
• Phone number — for OTP verification (Firebase Phone Auth)
• Uploaded chart images — sent to OpenAI’s GPT Vision API for analysis
• Selected assets and analysis inputs — your market selections and watchlist
• Account preferences — language, layout settings

This information is used strictly to provide and improve the Service.

B. Automatically Collected Information

When you use Chartick, we automatically collect:

• IP address, device and browser type, operating system
• Pages visited, usage logs, interaction events
• Referral source (UTM parameters or ref tags from shared links)

This data helps us improve performance, prevent abuse, and analyze product usage.

We use collected information to:

• Provide AI-generated analysis — process chart uploads, deliver insights, display market data
• Authenticate accounts — manage sign-in, usage tiers, and quotas
• Send transactional emails — welcome messages, trial expiry warnings, scan limit notifications
• Improve platform performance — understand usage patterns, optimize algorithms
• Detect fraud and abuse — enforce rate limits and Terms of Service
• Analyze share traffic and growth — measure referral performance

We do not sell personal data to third parties.

We use cookies and local storage to:

• Maintain sessions — Supabase authentication tokens for keeping you logged in
• Track usage tiers — guest scan count for quota enforcement (chartick_guest_scans)
• Enable share functionality — referral attribution via share links
• Improve user experience — saved watchlist (chartick_watchlist), layout preferences (chartick_sidebar_collapsed)

You may disable cookies in your browser settings, but some features may not function properly. We do not use third-party tracking cookies or advertising pixels.

When you create a share link (e.g., chartick.ai/share/abc123), the following may become publicly accessible via that link:

• The analysis summary, verdict, and confidence score
• A branded card image and OG (Open Graph) image for social media previews
• Related metadata (asset name, timeframe)

Anyone with access to the share URL may view the shared analysis. We strongly advise users not to include personal or sensitive information in shared content. We are not responsible for how third parties redistribute shared links.

Public share links may remain accessible unless explicitly removed by requesting deletion.

When you use our sharing features (WhatsApp, Telegram, X, etc.):

• The content you share is transmitted via the respective platform
• Those platforms operate under their own privacy policies
• We do not control how those platforms store or process shared content
• Chartick does not access private messages or contact lists on your device

We may append referral parameters (such as ref=share) to shared URLs. These are used to:

• Attribute traffic sources
• Measure share performance
• Improve product growth analytics

These parameters do not expose personal identity to other users.

We use trusted third-party service providers that process data only to the extent necessary to operate the Service:

• OpenAI — chart images are sent to GPT Vision for AI analysis
• Supabase — database hosting and user authentication
• Firebase (Google) — phone number verification via SMS OTP
• TwelveData — real-time and historical market data
• Vercel — website hosting and serverless functions
• Resend — transactional email delivery

If you choose to interact with a third-party broker through Chartick:

• You interact directly with the broker
• The broker may collect personal and financial information under its own privacy policy
• Chartick does not control or manage broker data systems
• We may receive confirmation that a referral occurred, but we do not access trading account balances or transaction history

We implement reasonable technical and organizational safeguards, including:

• HTTPS/TLS encryption for all data in transit
• Secure database storage in Supabase (PostgreSQL) with row-level security policies
• Access control systems — production database access restricted to authorized personnel

However, no system can guarantee absolute security.

We retain data:

• While your account is active
• As needed to provide the Service
• As required by applicable laws

You may request deletion of your account and associated personal data. Public share links may remain accessible unless explicitly removed.

Your data may be processed or stored in countries outside your jurisdiction. By using the Service, you consent to such transfers. We ensure that any data transfers comply with applicable data protection standards.

Depending on your jurisdiction, you may have the right to:

• Access — request a copy of the personal data we hold about you
• Correction — update or correct inaccurate information
• Deletion — request deletion of your account and associated data
• Withdraw consent — opt out of non-essential communications at any time

To exercise your rights, contact us at the email address below.

The Service is intended for individuals 18 years or older. We do not knowingly collect personal data from individuals under 18. If you believe a minor has provided us with personal data, please contact us and we will promptly delete it.

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated effective date. Continued use of the Service after changes constitutes acceptance of the revised policy.

For privacy-related inquiries, please contact us at:

Email: support@chartick.ai