Legal

Privacy Policy

Last updated: March 2026

TradeAdda ("we", "us", "our") operates the website mytradeadda.in (the "Service"). This page informs you of our policies regarding the collection, use, and disclosure of personal information when you use our Service.

1. Information We Collect

Account Information

When you create an account, we collect your name, email address, and password. Passwords are hashed using bcrypt and are never stored in plaintext.

Trade Data

You may voluntarily add trade data — including symbols, prices, quantities, dates, notes, emotions, and strategy tags. This data is stored in our database and is only accessible to you.

Broker Tokens

If you connect a broker (Zerodha, Groww, Fyers, Upstox, AngelOne, or Dhan), we store your OAuth access tokens. These tokens are encrypted at rest using AES-256-GCM and are only used to fetch your trade history. We never place, modify, or cancel orders on your behalf.

Payment Information

Payment processing is handled by Razorpay. We do not store your credit/debit card numbers or UPI details. Razorpay's privacy policy governs payment data.

Cookies & Analytics

We use cookies for authentication (session management via NextAuth). We may use Google Analytics, PostHog, and Meta Pixel for anonymous usage analytics. You can disable cookies in your browser settings.

2. How We Use Your Information

  • To provide and maintain the Service
  • To authenticate you and secure your account
  • To sync trades from connected brokers
  • To generate analytics and reports visible only to you
  • To process payments and manage subscriptions
  • To send transactional emails (welcome, invoices, payment issues)
  • To improve the Service based on anonymous usage data

3. Data Sharing

We do not sell, rent, or share your personal data with third parties for marketing purposes. We share data only with:

  • Razorpay — for payment processing
  • Broker APIs — to fetch your trade history (using your encrypted tokens)
  • Cloud providers (Vercel, Supabase, Upstash, Cloudflare) — for hosting and infrastructure
  • Resend — for sending transactional emails

4. Data Security

Passwords
bcrypt hashed (cost factor 12)
Broker tokens
AES-256-GCM encrypted at rest
All connections
HTTPS / TLS enforced
Security headers
HSTS, CSP, X-Frame-Options
Rate limiting
On all sensitive endpoints

5. Data Retention

Your data is retained as long as your account is active. If you delete your account, all personal data and trade history will be permanently deleted within 30 days.

6. Your Rights

You have the right to:

  • Access your data (available via your dashboard)
  • Correct inaccurate data
  • Delete your account and all associated data
  • Disconnect broker connections at any time
  • Cancel your subscription at any time

7. Children's Privacy

TradeAdda is not intended for users under 18 years of age. We do not knowingly collect data from minors.

8. Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated date. Continued use of the Service constitutes acceptance of the updated policy.

9. Contact Us

If you have questions about this Privacy Policy, contact us at support@mytradeadda.in.

Terms & Conditions|Home