Privacy Policy

Last updated: March 16, 2026

1. Introduction

Deep Blue Alpha ("we", "us", "our") respects your privacy. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your data when you use our website and services at deepbluealpha.io.

2. Information We Collect

Information You Provide

  • Account Data: Email address and hashed password when you create an account
  • Payment Data: Payment processing is handled by Stripe (credit cards) and NOWPayments (cryptocurrency). We do not store your full credit card number, bank account details, or private keys. We receive only transaction confirmation details.
  • Communications: Any messages you send us via email or support channels

Information Collected Automatically

  • Usage Data: Pages visited, features used, API endpoints called, and timestamps
  • Device Data: Browser type, operating system, screen resolution, and language preference
  • Network Data: IP address (anonymized for analytics), referral source
  • Cookies: Authentication tokens and minimal analytics cookies (see our Cookie Policy)

Information We Do NOT Collect

  • Your cryptocurrency wallet private keys or seed phrases
  • Your trading positions on any exchange
  • Full credit card numbers (handled exclusively by Stripe)
  • Government identification documents

3. How We Use Your Information

  • Service Delivery: To provide, maintain, and improve Deep Blue Alpha
  • Authentication: To verify your identity and manage your subscription
  • Communication: To send service updates, security alerts, and (with consent) product announcements
  • Analytics: To understand usage patterns and improve performance (aggregated, anonymized data)
  • Security: To detect fraud, abuse, and unauthorized access
  • Legal Compliance: To comply with applicable laws and legal requests

4. Data Sharing

We do not sell your personal data. We share data only in these limited circumstances:

  • Payment Processors: Stripe and NOWPayments process your payments under their own privacy policies
  • Infrastructure Providers: Our hosting provider processes data as needed to run the Service
  • CDN/Security: Cloudflare provides CDN and DDoS protection, processing traffic data per their privacy policy
  • Legal Requirements: When required by law, subpoena, or legal process
  • Safety: To protect the rights, property, or safety of Deep Blue Alpha and its users

5. Data Retention

We retain your account data for as long as your account is active. If you delete your account, we will remove your personal data within 30 days, except where retention is required by law or for legitimate business purposes (e.g., fraud prevention). Anonymized analytics data may be retained indefinitely.

6. Data Security

We implement industry-standard security measures including:

  • HTTPS encryption for all connections (TLS 1.2+)
  • Password hashing with PBKDF2-HMAC-SHA256 (100,000 iterations)
  • API keys stored as SHA-256 hashes (originals never stored)
  • Cloudflare DDoS protection and Web Application Firewall
  • Rate limiting on authentication and API endpoints

No system is 100% secure. We cannot guarantee absolute security but will notify affected users promptly in the event of a data breach.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your account and associated data
  • Portability: Receive your data in a machine-readable format
  • Objection: Object to certain processing of your data
  • Withdraw Consent: Where processing is based on consent, you may withdraw it at any time

To exercise these rights, contact us at [email protected].

8. International Users

Deep Blue Alpha is operated from the United States. If you access the Service from outside the US, your data may be transferred to and processed in the US. By using the Service, you consent to this transfer.

9. Children's Privacy

Deep Blue Alpha is not intended for users under 18 years of age. We do not knowingly collect data from minors. If we learn that we have collected data from a minor, we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify registered users of material changes. The "Last updated" date at the top reflects the most recent revision.

11. Contact

For privacy-related questions or requests, contact us at [email protected].

Terms of Service Privacy Policy Disclaimer Cookie Policy