Last updated: 10/27/2025

Stock AI Privacy Policy

Privacy Policy for Stock AI - Trends & Analysis mobile application

Last Updated

Effective Date: October 27, 2025 Last Updated: October 27, 2025

Introduction

This Privacy Policy describes how Datapad, Inc. ("Datapad," "we," "us," "our") collects, uses, shares, and protects information when you use the Stock AI - Trends & Analysis mobile application (the "App"). Stock AI is a separate product published by Datapad.

The App helps you explore stock market data, run AI-powered technical analysis, and analyze chart images. The App is educational only and does not provide investment advice. We are not a broker and do not execute trades.

By using the App, you acknowledge and agree to the practices described in this Privacy Policy. If you do not agree, please do not use the App.

For Datapad's main web application privacy policy, please visit: https://datapad.io/privacy-policy

Contact Information

Legal Entity: Datapad, Inc. Brand/Product: Stock AI Email: hello@datapad.io Mailing Address: Datapad Inc. 651 N Broad St, Suite 206 Middletown, Delaware 19709 USA

Data Protection Officer / Privacy Contact: Name: Cem Roso Title: CEO Email: hello@datapad.io

Scope & Summary

This Privacy Policy applies to the Stock AI mobile application for iOS and Android. If we operate a separate website for Stock AI in the future, a separate policy may apply.

What the App Does:

  • Search and view stock tickers and market data from Yahoo Finance
  • Run AI-powered technical analysis on stocks (RSI, MACD, moving averages, etc.)
  • Chat with AI about stock market trends and analysis
  • Upload or capture images of stock charts for AI-powered analysis in plain English
  • Save favorite tickers to watchlists
  • Receive optional push notifications about market updates
  • Subscribe to premium features via in-app purchase

Important: The App provides educational content only and is not investment advice. We are not affiliated with Yahoo Finance except as a data source for stock symbols and quotes.

Data We Collect

We collect different categories of data to provide and improve the App. Below is a summary of what we collect, why we collect it, how long we keep it, and the legal basis (where applicable under GDPR).

1. Account & Authentication Data

Collected: Yes What We Collect:

  • Unique user ID (UUID generated by our authentication provider, Supabase)
  • Session tokens (access and refresh tokens)
  • Account type (anonymous or registered)
  • Email address and password (only if you upgrade from anonymous to registered account)
  • Display name, first name, last name (optional, for personalization)

How Collected:

  • Automatically when you first open the App (creates anonymous account)
  • Directly from you if you choose to upgrade to a registered account with email/password
  • Via OAuth providers if you link Google, Apple, or Facebook accounts

Why We Collect It:

  • Provide and secure your account
  • Enable multi-device sync of your data
  • Authenticate you when you use the App
  • Support customer service requests

Retention:

  • Active sessions: Until you sign out or tokens expire
  • Account data: Until you delete your account
  • After account deletion: Retained in backups for [X days] then permanently deleted

Legal Basis (GDPR):

  • Necessary for contract performance (to provide the App)
  • Legitimate interests (security, fraud prevention)

2. User Profile & Preferences

Collected: Optional What We Collect:

  • First name and last name
  • Trading experience level
  • Market preferences
  • Trading style
  • Analysis detail preferences

How Collected:

  • Directly from you during onboarding or profile setup

Why We Collect It:

  • Personalize your experience
  • Tailor AI responses to your experience level and preferences

Retention:

  • Until you delete your account or update your profile
  • Backups retained for [X days] after deletion

Legal Basis (GDPR):

  • Consent (you voluntarily provide this information)
  • Legitimate interests (service improvement)

3. Chat Messages & AI Conversations

Collected: Yes What We Collect:

  • All messages you send to the AI chat
  • All AI responses generated for you
  • Stock ticker symbols discussed in conversations
  • Timestamps of conversations
  • Chat session metadata (session ID, associated images)
  • Tool execution data (e.g., web searches triggered by AI)

How Collected:

  • Directly from you as you type messages
  • Generated automatically by our AI systems

Why We Collect It:

  • Provide AI chat functionality
  • Display your conversation history
  • Improve AI responses and accuracy
  • Troubleshoot technical issues
  • Ensure quality and safety

Retention:

  • Stored indefinitely unless you manually delete individual messages or conversations
  • After manual deletion: Removed from active database immediately; backups retained for [X days]

Legal Basis (GDPR):

  • Necessary for contract performance (to provide the chat feature)
  • Legitimate interests (service improvement, safety)

Important Note on AI Processing:

  • Your prompts, chat messages, and uploaded images are processed by AI to deliver technical and chart analysis
  • By default, your content is NOT used to train third-party AI models
  • Processing may occur on our infrastructure (hosted on Railway) and via vetted AI service providers under data-processing agreements
  • We do not sell your data to AI training companies

4. Images & Chart Analysis

Collected: Yes (only when you upload or capture an image) What We Collect:

  • Stock chart images you upload or capture with your camera
  • Image data (base64 encoded format)
  • AI analysis results (sentiment, confidence scores, technical observations)
  • Timestamps and analysis metadata

How Collected:

  • Directly from you when you select a photo from your library or use the camera to capture a chart
  • We only access images when you explicitly initiate the action; we do not scan your photo library in the background

Why We Collect It:

  • Provide AI-powered chart analysis
  • Display analysis results and history
  • Troubleshoot analysis accuracy

Retention:

  • Stored locally on your device until you delete it
  • Sent to our backend API for analysis; not permanently stored on our servers [X days]
  • You can delete individual image analyses at any time from the App

Legal Basis (GDPR):

  • Necessary for contract performance (to provide image analysis)
  • Consent (you explicitly select or capture images)

5. Watchlists & Favorites

Collected: Optional What We Collect:

  • Stock ticker symbols you save to your watchlist or favorites

How Collected:

  • Directly from you when you add tickers to your watchlist

Why We Collect It:

  • Display your saved tickers for quick access
  • Personalize your experience

Retention:

  • Until you remove tickers from your watchlist or delete your account
  • Backups retained for [X days] after deletion

Legal Basis (GDPR):

  • Consent (you voluntarily add tickers)
  • Legitimate interests (provide feature you requested)

6. Subscription & Purchase Data

Collected: Yes (if you subscribe to premium) What We Collect:

  • Subscription status (free or premium)
  • Access level information
  • App Store or Google Play transaction receipts (metadata only; we do not access full payment card details)
  • Free tier usage counts (number of analyses, compatibility checks)
  • Last usage reset date

How Collected:

  • Automatically via our subscription management provider, Adapty
  • Apple or Google processes payments; we receive only subscription status and anonymous transaction identifiers

Why We Collect It:

  • Determine your access level and feature availability
  • Track free tier usage limits
  • Provide customer support for billing inquiries
  • Prevent abuse

Retention:

  • Subscription status: For the duration of your subscription plus [X months] for billing records
  • Usage data: Reset periodically based on free tier limits; historical data retained for [X months]

Legal Basis (GDPR):

  • Necessary for contract performance (to provide premium features)
  • Legal obligation (tax and accounting requirements)

7. Push Notification Tokens

Collected: Optional What We Collect:

  • Expo push notification token (device-specific identifier)
  • Device type and operating system
  • Notification preferences (enabled/disabled)

How Collected:

  • Automatically when you grant notification permission to the App
  • Via Expo push notification service

Why We Collect It:

  • Send you market alerts and updates (if you opt in)
  • Deliver important account or service notifications

Retention:

  • Until you revoke notification permission or delete your account
  • Tokens are automatically refreshed; old tokens are deleted after [X days]

Legal Basis (GDPR):

  • Consent (you grant notification permission via your device)
  • Legitimate interests (service communications)

8. Device & Technical Information

Collected: Automatically What We Collect:

  • Device type and model (e.g., iPhone 14, Samsung Galaxy S23)
  • Operating system and version (e.g., iOS 17, Android 14)
  • App version and build number
  • Device brand
  • IP address (temporarily, for API requests)
  • Browser/API request metadata

How Collected:

  • Automatically collected by the App and our servers when you use the App

Why We Collect It:

  • Ensure compatibility and optimize performance
  • Diagnose and fix technical issues
  • Prevent fraud and abuse
  • Analyze usage patterns to improve the App

Retention:

  • Active sessions: For the duration of your session
  • Server logs: Retained for [X days/months] for debugging and security
  • Analytics data: Aggregated and anonymized; retained indefinitely

Legal Basis (GDPR):

  • Necessary for contract performance (to deliver the App)
  • Legitimate interests (security, performance, troubleshooting)

9. Support Communications

Collected: Only if you contact us What We Collect:

  • Your email address
  • Message content
  • Attachments (if you send screenshots or files)
  • Support ticket history

How Collected:

  • Directly from you when you email us or submit an in-app support request

Why We Collect It:

  • Respond to your questions and issues
  • Improve customer service
  • Resolve disputes

Retention:

  • Support emails and tickets: Retained for [X months] after your issue is resolved
  • After retention period: Permanently deleted

Legal Basis (GDPR):

  • Legitimate interests (customer service)
  • Legal obligation (dispute resolution)

10. Usage & Analytics Data

Collected: Currently minimal (console logging only) What We Collect:

  • Feature usage events (e.g., "user viewed chat screen")
  • Error and crash reports
  • Performance metrics (e.g., load times)

How Collected:

  • Automatically via our internal analytics system
  • Currently logs to console only; third-party analytics providers (Mixpanel, PostHog) are available but not activated

Why We Collect It:

  • Understand how users interact with the App
  • Identify and fix bugs
  • Improve features and user experience

Retention:

  • Logs: Retained for [X days/months]
  • Aggregated analytics: Anonymized and retained indefinitely

Legal Basis (GDPR):

  • Legitimate interests (service improvement, quality assurance)

Your Choice:

  • If we activate third-party analytics in the future, we will provide an opt-out mechanism

Data We Do NOT Collect

  • Full payment card details (handled by Apple/Google)
  • Social Security numbers or government IDs
  • Precise location (GPS coordinates)
  • Clipboard data (except when you explicitly paste into the App)
  • Contacts or calendar data
  • Background photo scanning (camera/photos accessed only when you initiate)

How We Use Your Data

We use the data we collect for the following purposes:

  1. Provide the App: Authenticate you, display your data, enable chat and image analysis, sync across devices
  2. Process AI Requests: Send your messages and images to AI systems to generate analysis and responses
  3. Personalization: Tailor AI responses based on your preferences and experience level
  4. Customer Support: Respond to your questions and troubleshoot issues
  5. Security & Fraud Prevention: Detect and prevent abuse, spam, and unauthorized access
  6. Service Improvement: Analyze usage patterns to improve features, fix bugs, and optimize performance
  7. Legal Compliance: Comply with laws, regulations, and legal requests
  8. Billing & Subscriptions: Manage your subscription status and free tier limits

We do NOT use your data for:

  • Targeted advertising on third-party websites
  • Selling your data to data brokers or advertisers
  • Training third-party AI models (unless you explicitly opt in)

Data Sharing & Disclosure

We do not sell your personal data. We share data only as described below:

Service Providers & Processors

We work with trusted third-party service providers who process data on our behalf under contract. These providers are required to protect your data and use it only for the purposes we specify.

Backend Infrastructure:

  • Provider: Railway (cloud hosting)
  • Purpose: Host our backend API that processes stock analysis, chat, and image analysis requests
  • Data Shared: Chat messages, images, ticker queries, user IDs
  • Location: [Provider infrastructure location]

Database & Authentication:

  • Provider: Supabase
  • Purpose: Store user profiles, chat history, and authentication data; manage user accounts
  • Data Shared: User IDs, profile information, chat messages, images, session tokens, push tokens
  • Location: [Supabase data center location]
  • Safeguards: Encryption at rest and in transit; row-level security policies

Subscription Management:

  • Provider: Adapty
  • Purpose: Manage in-app subscriptions, display paywalls, track subscription status
  • Data Shared: User ID, subscription status, purchase events, device information
  • Location: [Adapty infrastructure location]
  • Privacy Policy: [Link to Adapty privacy policy]

Push Notifications:

  • Provider: Expo (by Expo.io / EAS)
  • Purpose: Deliver push notifications to your device
  • Data Shared: Push tokens, device information, notification content
  • Location: [Expo infrastructure location]
  • Privacy Policy: [Link to Expo privacy policy]

AI Processing:

  • Provider: [Insert AI provider name, e.g., OpenAI, Anthropic, etc.]
  • Purpose: Generate AI chat responses and image analysis
  • Data Shared: Your chat messages, uploaded images, conversation context
  • Training: By default, your data is NOT used for AI model training
  • Safeguards: Data processing agreements; limited retention by provider
  • Privacy Policy: [Link to AI provider privacy policy]

Market Data:

  • Provider: Yahoo Finance (via our backend API)
  • Purpose: Fetch stock ticker symbols, prices, and news
  • Data Shared: Ticker symbols you search for or request
  • Important: We do not send your personal data (name, email, etc.) to Yahoo Finance; only ticker queries via our backend API
  • Privacy Policy: [Link to Yahoo Finance privacy policy]

Legal & Safety Disclosures

We may disclose your data if required by law or to protect rights and safety:

  • Legal Requests: Comply with court orders, subpoenas, or legal obligations
  • Law Enforcement: Respond to lawful requests from government agencies
  • Safety & Security: Prevent fraud, abuse, or harm to users or the public
  • Rights Protection: Enforce our Terms of Service, investigate violations, protect intellectual property
  • Corporate Transactions: If we are acquired, merge, or undergo a business restructuring, your data may be transferred to the new entity (with safeguards to protect your privacy)

Aggregated & Anonymized Data

We may share aggregated, anonymized, or de-identified data that cannot reasonably identify you (e.g., "30% of users analyzed tech stocks this month"). This data may be used for research, marketing, or shared with partners.

International Data Transfers

The App and our service providers operate globally. Your data may be transferred to, stored, and processed in countries outside your region, including the United States and other jurisdictions where data protection laws may differ.

Safeguards for International Transfers:

  • We use Standard Contractual Clauses (SCCs) approved by the European Commission for transfers from the EEA/UK
  • Our processors commit to equivalent protections under data processing agreements
  • Encryption in transit and at rest

How to Obtain a Copy: If you would like a copy of the safeguards we use for international transfers, contact us at hello@datapad.io.

Your Rights & Choices

You have rights regarding your data. These rights vary by region (see Regional Notices below).

Access Your Data

  • In-App: View your profile, chat history, image analyses, and watchlists within the App
  • Email Request: Contact hello@datapad.io to request a copy of all data we hold about you

Correct or Update Your Data

  • In-App: Edit your profile information, trading preferences, and display name
  • Email Request: Contact us if you cannot update data yourself

Delete Your Data

  • In-App: Delete individual chat messages, image analyses, or watchlist items
  • Account Deletion: Contact hello@datapad.io to request full account deletion
  • What Happens: Active data is deleted immediately; backups retained for [X days] for recovery purposes, then permanently deleted; some data may be retained longer for legal compliance (e.g., transaction records for [X years])

Export Your Data (Portability)

  • Email Request: Contact hello@datapad.io to request a machine-readable export of your data (JSON or CSV format)

Opt Out of Communications

  • Push Notifications: Disable in your device settings (Settings > Stock AI > Notifications)
  • Marketing Emails: Unsubscribe via the link in emails or contact hello@datapad.io (Note: We do not currently send marketing emails)

Restrict or Object to Processing

  • You can request that we limit how we use your data or object to certain processing (e.g., analytics)
  • Contact hello@datapad.io with your request; we will evaluate and respond based on applicable laws

Withdraw Consent

  • Where we rely on your consent (e.g., analytics, push notifications), you may withdraw it at any time
  • Withdrawing consent does not affect prior processing

How We Verify Your Identity

  • For security, we may ask you to verify your identity (e.g., confirm your email address or answer account-related questions) before fulfilling requests

Response Time: We aim to respond to rights requests within [30 days] (or as required by law).

App Permissions

The App requests the following permissions. You can manage these in your device settings.

Camera

  • Why: Capture images of stock charts for AI analysis
  • When: Only when you tap "Take Photo" in the App
  • Your Control: Grant or deny in device settings (Settings > Stock AI > Camera)
  • Disclosure (iOS): "StockAI needs access to your camera to analyze stock charts and images for technical analysis."

Photo Library

  • Why: Select existing images of stock charts for AI analysis
  • When: Only when you tap "Choose from Library" in the App
  • Your Control: Grant or deny in device settings (Settings > Stock AI > Photos)
  • Disclosure (iOS): "StockAI needs access to your photo library to analyze stock charts and images for technical analysis."

Notifications

  • Why: Send you market alerts, updates, and important account notifications
  • When: Requested when you first open the App or when you enable notifications
  • Your Control: Enable or disable in device settings (Settings > Stock AI > Notifications)

Storage (Android)

  • Why: Save and access image files for analysis
  • When: Automatically granted for app data; explicit permission for external storage if needed

We do NOT access your camera, photos, or clipboard in the background. These permissions are used only when you explicitly initiate an action (e.g., upload a photo).

App Tracking Transparency (ATT) & Advertising ID

  • IDFA/Advertising ID: We do NOT currently use Apple's IDFA or Google's Advertising ID
  • Tracking: We do not track you across third-party apps or websites for advertising
  • If This Changes: We will request permission via the App Tracking Transparency (ATT) prompt and update this policy

Data Security

We take the security of your data seriously and implement reasonable technical and organizational measures, including:

  • Encryption in Transit: HTTPS/TLS for all data transmitted between your device and our servers
  • Encryption at Rest: Sensitive data encrypted in our databases (managed by Supabase)
  • Access Controls: Role-based access; only authorized personnel can access user data
  • Authentication Security: Secure session tokens; password hashing (bcrypt/Argon2)
  • Monitoring & Logging: Audit logs for data access and API requests
  • Vendor Due Diligence: We vet service providers for security and privacy practices
  • Regular Reviews: Periodic security assessments and updates

Residual Risk: No method of transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. If you become aware of a security issue, please contact us immediately at hello@datapad.io.

Data Retention

We retain data for as long as necessary to provide the App, comply with legal obligations, and resolve disputes. Below is a summary of retention periods:

| Data Category | Retention Period | Rationale | |---------------|------------------|-----------| | Account Data | Until account deletion | Necessary to provide service | | Chat Messages | Indefinite (unless you delete) | User content; deleted on request | | Image Analyses | Stored locally until you delete; server-side: [X days] | Analysis results; temporary server processing | | User Profile | Until account deletion or update | Personalization | | Push Tokens | Until revoked or account deleted | Notification delivery | | Subscription Data | Subscription duration + [X months] | Billing, support, legal compliance | | Usage/Analytics Logs | [X days/months] | Troubleshooting, improvement | | Support Emails | [X months] after resolution | Customer service | | Server Logs (IP, API requests) | [X days/months] | Security, debugging | | Backups | [X days] after deletion | Disaster recovery |

After Deletion:

  • Active data removed immediately from production systems
  • Backups retained for [X days] then permanently deleted
  • Some data retained longer for legal/regulatory requirements (e.g., financial records for [X years])

How to Request Deletion: Contact hello@datapad.io or delete your account via the App (if account deletion feature is implemented).

Children's Privacy

The App is not directed to children under the age of 13 (or 16 in the European Economic Area). We do not knowingly collect personal data from children.

If You Are a Parent or Guardian: If you believe your child under 13/16 has provided us with personal data, please contact us immediately at hello@datapad.io. We will:

  1. Delete the data from our systems
  2. Disable the account
  3. Take steps to prevent future access

Age Verification: We do not actively verify users' ages but rely on users to comply with our Terms of Service age requirements.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or new features.

How We Notify You:

  • Update the "Last Updated" date at the top of this policy
  • Display an in-app notice if changes are material
  • Send an email notification if required by law

Your Acknowledgment: Continued use of the App after the effective date of changes constitutes your acknowledgment of the updated policy. If you do not agree, please stop using the App and contact us to delete your account.

Regional Privacy Notices

Depending on where you live, you may have additional rights under local privacy laws. Below are region-specific notices.

European Economic Area (EEA) & United Kingdom (GDPR/UK GDPR)

If you are located in the EEA or UK, the following applies:

Data Controller

Datapad, Inc. is the data controller for your personal data.

Contact: Datapad Inc. 651 N Broad St, Suite 206 Middletown, Delaware 19709, USA Email: hello@datapad.io Data Protection Officer: Cem Roso (CEO) - hello@datapad.io

EEA/UK Representative: [To be appointed if required under GDPR Article 27]

Lawful Bases for Processing

We process your personal data under the following lawful bases:

| Purpose | Lawful Basis | |---------|--------------| | Provide App features (authentication, chat, analysis) | Contract (necessary to perform the service) | | Personalization (preferences, experience) | Consent (you voluntarily provide information) | | Security, fraud prevention | Legitimate interests (protect our users and services) | | Service improvement, analytics | Legitimate interests (improve quality and performance) | | Customer support | Legitimate interests (respond to inquiries) | | Legal compliance (e.g., tax records) | Legal obligation |

Legitimate Interests Assessment: Where we rely on legitimate interests, we have balanced our interests against your privacy rights and determined that processing is necessary and proportionate. You have the right to object (see "Your Rights" above).

Your GDPR Rights

In addition to the rights described above, you have:

  • Right to lodge a complaint with your local supervisory authority (e.g., ICO in the UK, CNIL in France)
  • Right to object to processing based on legitimate interests
  • Right to restrict processing in certain circumstances
  • Right to data portability (receive your data in a structured format)

How to Exercise Rights: Contact hello@datapad.io. We will respond within one month (or as required by law).

International Transfers

Your data may be transferred outside the EEA/UK to the United States and other countries. We use Standard Contractual Clauses (SCCs) approved by the European Commission to ensure adequate protection.

How to Obtain SCCs: Contact hello@datapad.io.

Automated Decision-Making

We do NOT use automated decision-making or profiling that produces legal or similarly significant effects on you.

California (CCPA/CPRA)

If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) grant you specific rights.

Categories of Personal Information We Collect

In the past 12 months, we have collected the following categories of personal information (as defined by CCPA):

  • Identifiers: Email, name, user ID, device ID, IP address
  • Commercial Information: Subscription status, purchase history
  • Internet/Network Activity: Browsing behavior within the App, API requests, logs
  • Geolocation: Approximate location (country/region) inferred from IP address
  • Visual Information: Images you upload of stock charts
  • Inferences: User preferences, trading experience level

How We Use Personal Information

We use personal information for the purposes described in "How We Use Your Data" above, including:

  • Providing the App and features
  • Personalization
  • Analytics and service improvement
  • Security and fraud prevention
  • Legal compliance

Do We Sell or Share Personal Information?

  • Sale: We do NOT sell your personal information to third parties.
  • Share: We do NOT share your personal information for cross-context behavioral advertising (as defined by CPRA).

Your CCPA/CPRA Rights

You have the right to:

  1. Know/Access: Request disclosure of the categories and specific pieces of personal information we have collected about you
  2. Delete: Request deletion of your personal information (subject to legal exceptions)
  3. Correct: Request correction of inaccurate personal information
  4. Opt-Out of Sale/Share: We do not sell or share your data, but if this changes, you can opt out
  5. Limit Use of Sensitive Personal Information: Request that we limit use of sensitive data (if applicable)
  6. Non-Discrimination: You have the right to not receive discriminatory treatment for exercising your CCPA rights

How to Exercise Your Rights

Email Request: hello@datapad.io Response Time: We will respond within 45 days (or as required by law) Verification: We may ask you to verify your identity (e.g., confirm your email) before processing requests

Do Not Sell or Share My Personal Information

We do not sell or share your personal information. If our practices change, we will update this policy and provide a clear opt-out mechanism.

Limit the Use of My Sensitive Personal Information

If we process sensitive personal information (e.g., precise geolocation, biometrics), you may request that we limit its use. Currently, we do not collect or use sensitive personal information beyond what is necessary to provide the App.

Authorized Agent

You may designate an authorized agent to make requests on your behalf. The agent must provide proof of authorization (e.g., a signed letter). We may still require you to verify your identity directly.

Shine the Light Law

Under California's "Shine the Light" law (Civil Code § 1798.83), California residents may request information about disclosures of personal information to third parties for direct marketing purposes. We do NOT share your personal information with third parties for their direct marketing purposes.

Türkiye (KVKK - Turkish Data Protection Law)

If you are located in Türkiye, the Law on the Protection of Personal Data (KVKK) grants you specific rights.

Data Controller

Datapad, Inc. is the data controller for your personal data.

Contact: hello@datapad.io

Your KVKK Rights

You have the right to:

  • Learn whether your personal data is processed
  • Request information about processing if your data has been processed
  • Learn the purpose of processing and whether it is used in accordance with its purpose
  • Know the third parties to whom your data is transferred domestically or abroad
  • Request correction of incomplete or inaccurate data
  • Request deletion or destruction of data under conditions set forth in KVKK Article 7
  • Request notification of corrections, deletions, or destructions to third parties
  • Object to adverse consequences resulting from automated processing of data
  • Claim compensation for damages due to unlawful processing

How to Exercise Rights: Contact hello@datapad.io. We will respond within 30 days (or as required by KVKK).

Data Transfers

Your data may be transferred outside Türkiye. We ensure adequate protection through contractual safeguards.

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: hello@datapad.io Mailing Address: Datapad Inc. 651 N Broad St, Suite 206 Middletown, Delaware 19709, USA

Data Protection Officer: Cem Roso (CEO) - hello@datapad.io

EEA/UK Representative: [To be appointed if required]

Additional App-Specific Clarifications

Educational Purpose Only

Stock AI provides educational tools and analysis. We do not provide investment advice, recommendations, or financial planning services. The App's outputs should not be interpreted as recommendations to buy, sell, or hold any security. You are solely responsible for your investment decisions.

Not a Broker: We are not a registered broker-dealer and do not execute trades.

Yahoo Finance

We use Yahoo Finance as a data source for stock symbols, prices, and news. We are not affiliated with, endorsed by, or sponsored by Yahoo or Yahoo Finance. Our use of Yahoo Finance data is subject to their terms and policies. We do not send your personal data (name, email, etc.) to Yahoo Finance; only ticker queries are sent via our backend API.

Watchlists, Favorites & Notifications

If you enable watchlists, favorites, or push notifications, the data collection and sharing practices described above apply. These features are optional.

Thank you for trusting Stock AI and Datapad with your data. We are committed to protecting your privacy and providing a safe, transparent experience.