Privacy Policy

Effective: February 16, 2026

1. Overview

This Privacy Policy describes how 0DTEdge (the "Service") collects, uses, stores, and protects information from users. The Service is an automated options trading dashboard. Your data is stored on our servers and subject to the protections described herein.

2. Information We Collect

Account Information: Username, hashed password (PBKDF2-SHA256), and email address.

Brokerage Credentials: API tokens and account identifiers, encrypted at rest using Fernet symmetric encryption (AES-128-CBC + HMAC-SHA256).

Trading Activity: Trade logs, daily performance statistics, open positions, and signal history.

User Preferences: Display settings, trading parameters, and notification configuration.

We do not: Use tracking cookies, embed analytics or ad scripts, or collect device fingerprints.

3. How We Use Your Information

Solely for: operating the Service, authentication and security, notifications via channels you configure, and aggregate non-identifiable analysis for service improvement.

4. Third-Party Services

The Service communicates with brokerage APIs (Tradier, Tastytrade, Alpaca, Robinhood, IBKR), Tradier for shared market data, and optionally Slack/Discord/Email for notifications you configure.

5. Data Storage & Security

Passwords hashed with PBKDF2-SHA256. Brokerage credentials encrypted with Fernet. Session cookies set HttpOnly + SameSite=Lax. Rate-limited authentication.

6. Data Retention

Data retained while your account is active. Upon deletion, all data removed within 30 days. Audit trail trade logs retained up to 7 years.

7. Your Rights

Access, correction, deletion, data portability (JSON export), and credential revocation through settings or by contacting us.

8. Contact

Email: privacy@0dtedge.com

Governed by the laws of the State of Georgia, United States.