This policy explains how Bridge Innovations LLC, a New Hampshire limited liability company ("we", "us"), handles personal information in the Trading Intel website, API and related services (the "Service").
| Data | Why | When |
|---|---|---|
| Email address | Account identity, magic-link sign-in, account-related email | When you create an account |
| Authentication data (user ID, session tokens, sign-in timestamps; Google account ID if you use Google sign-in) | Keeping you signed in securely | On sign-in |
| Subscription tier and Stripe customer ID | Granting the access you paid for, and ending it when you cancel | On purchase |
| Watchlist entries (ticker, date added, price at time of adding) | Showing your list and its performance since you added it | When you add a ticker |
| Portfolio entries (ticker, share count, cost basis) | Showing the portfolio you manually entered | Only if you enter them |
| API keys (stored only as a hash) and per-day request counts | Authenticating API calls and enforcing rate limits | If you generate an API key |
| Waitlist email | Telling you when paid tiers launch | Only if you submit the form |
We do not collect: your card or bank details (Stripe receives those directly), your brokerage credentials, your real-world trading activity, or any special-category personal data. We do not connect to your brokerage.
We do not use advertising or cross-site tracking cookies. We use browser storage for functionality only:
ti_theme — your light/dark preference.ti_watchlist, ti_watch — your watchlist and
pinned strategies, so they work when signed out and on this device only.We do not sell or rent your personal information, and we do not "sell" or "share" it as those terms are defined under California law. We use these processors, each only for the purpose shown:
| Processor | Purpose | Data involved |
|---|---|---|
| Supabase | Database, authentication | Email, auth data, tier, watchlist, portfolio, hashed API keys |
| Cloudflare | Website hosting and delivery | Standard request logs, including IP address |
| Stripe | Payments and subscriptions | Email, payment details (collected by Stripe directly — we never receive card numbers) |
| Formspree | Waitlist / early-access form | Email you submit on that form |
| Optional "Sign in with Google" | Only if you choose it: your Google account email and ID |
We may also disclose information if required by law, to protect our legal rights, or as part of a merger or sale of the business (you would be notified).
We are based in the United States and our processors may store data in the US and elsewhere. Where personal data is transferred out of the UK/EEA, we rely on our processors' safeguards, including Standard Contractual Clauses where applicable.
Depending on where you live (including under GDPR/UK GDPR and the CCPA/CPRA), you may have the right to:
To exercise any of these, email info@bridgeinnovations.net. We will respond within the time required by applicable law (generally 30 days). We may need to verify your identity first.
Access to your data is enforced at the database level by row-level security policies, so one account cannot read another's watchlist or portfolio. API keys are stored only as SHA-256 hashes — we cannot recover the original key, only verify it. Traffic is encrypted in transit (HTTPS). No system is perfectly secure, and we cannot guarantee absolute security.
The Service is not directed at anyone under 18, and we do not knowingly collect personal information from children. If you believe a child has provided us data, contact us and we will delete it.
We may update this policy. Material changes will be reflected in the "Last updated" date above and, where appropriate, notified in the Service or by email.
Bridge Innovations LLC — New Hampshire, United States
Privacy questions and data requests:
info@bridgeinnovations.net