← Back to Home

Privacy Policy

Last updated: March 2026

1. Information We Collect

We collect the following types of information:

  • Account data: email address, name, and authentication credentials when you sign up.
  • Usage data: pages visited, features used, watchlist preferences, and alert configurations.
  • Payment data: billing information processed securely through Stripe. We do not store your full card number.
  • Device data: browser type, IP address, and device identifiers for security and analytics.

2. How We Use Your Information

We use your information to: provide and maintain the Service; process payments; send transactional emails (account confirmations, alerts, billing receipts); improve features based on usage patterns; and detect fraud or abuse. We do not sell your personal data to third parties.

3. Cookies & Tracking

We use essential cookies to maintain your session and authentication state. We use Plausible Analytics for privacy-friendly, cookie-less usage analytics — no personal data is collected by our analytics provider. We do not use advertising trackers or sell data to ad networks.

4. Third-Party Services

We share data with the following service providers, each under their own privacy policies:

  • Supabase — authentication and database hosting. Data stored in SOC 2 compliant infrastructure.
  • Stripe — payment processing. PCI DSS Level 1 certified. We never see or store your full card details.
  • Vercel — application hosting and CDN. Your requests are processed through their edge network.
  • Plausible Analytics — privacy-first website analytics. No cookies, no personal data collection.

5. Data Retention

We retain your account data for as long as your account is active. Usage data is retained in aggregated form for up to 24 months. Payment records are retained as required by tax and accounting regulations. You may request deletion of your data at any time.

6. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data ("right to be forgotten").
  • Export your data in a portable format.
  • Object to or restrict certain processing activities.

To exercise any of these rights, contact us at privacy@mxi.market.

7. Security

We implement industry-standard security measures including encryption in transit (TLS), encryption at rest, and regular security reviews. However, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

8. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via email or an in-app notification. Continued use of the Service after changes constitutes acceptance.

Contact

Questions about privacy? Contact us at privacy@mxi.market.