Privacy Policy

1. Information We Collect

We collect the following types of information when you use ORO Enigma:

• Account information: Name, email address, and password provided during registration.
• Trading preferences: Instrument selections, strategy configurations, prop firm account settings, and risk parameters.
• Usage data: Pages visited, features used, session duration, and interaction patterns.
• Device information: Hardware ID (HWID) used for Sync Agent authentication and device licensing.
• Payment information: Processed securely through Stripe. We do not store credit card numbers on our servers.

2. How We Use Your Data

• Provide, maintain, and improve the Platform and its features.
• Process subscription payments and manage billing.
• Deliver strategy updates and deployment notifications.
• Send product updates and service-related communications.
• Monitor platform performance and diagnose technical issues.
• Enforce our Terms of Service and protect against unauthorized access.

3. Data Storage

Your data is stored in Supabase (PostgreSQL) with encryption at rest. Strategy configurations are encrypted using AES encryption before storage. Trading performance data is stored for analysis and optimization purposes. All data transfers are encrypted in transit using TLS/HTTPS.

4. Third-Party Services

We integrate with the following third-party services, each governed by their own privacy policies:

• Stripe — Payment processing and subscription management.
• Supabase — Database hosting, authentication, and real-time data services.
• NinjaTrader — Trading platform integration for strategy execution.
• TradingView — Charting widgets and market data display.

5. Cookies

We use the following types of cookies:

• Essential cookies: Required for authentication and session management via Supabase.
• Functional cookies: Store your preferences such as sidebar state, theme, and instrument selection.

For more details, please refer to our Cookie Policy.

6. Data Retention

• Account data is retained for the duration your account remains active.
• Trading performance data is retained for up to 2 years for analysis.
• Upon account closure, all personal data is deleted within 30 days. Aggregated, anonymized data may be retained for platform improvement.

7. Your Rights

Under applicable data protection laws (including GDPR and CCPA), you have the right to:

• Access the personal data we hold about you.
• Request correction of inaccurate or incomplete data.
• Request deletion of your personal data.
• Export your data in a portable format.
• Opt out of marketing emails at any time.
• Object to or restrict certain data processing activities.

To exercise any of these rights, contact us at privacy@oroenigma.com.

8. Security

We implement industry-standard security measures to protect your data, including HTTPS encryption for all communications, encrypted database storage, HWID-based device authentication for the Sync Agent, and AES-encrypted strategy delivery. While we take reasonable precautions, no method of electronic transmission or storage is 100% secure.

9. Children

ORO Enigma is not intended for users under the age of 18. We do not knowingly collect personal information from children. If we become aware that a user under 18 has provided us with personal data, we will take steps to delete such information promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email to the address associated with your account. We encourage you to review this page periodically.

11. Contact

For data protection inquiries or to exercise your privacy rights, contact us at privacy@oroenigma.com.