Privacy Policy

Last Updated: January 15, 2024

StockAPI ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services.

📋 Information We Collect

Personal Information

We may collect personal information that you provide directly to us:

Account Information - Name, email address, phone number
Billing Information - Payment method, billing address
Profile Information - Company name, job title, preferences
Communication - Messages, feedback, support requests

Usage Information

We automatically collect information about your use of our services:

API Usage - Request logs, response times, error rates
Website Activity - Pages visited, time spent, interactions
Device Information - IP address, browser type, operating system
Location Data - General location based on IP address

Technical Information

We collect technical information to improve our services:

Logs - Server logs, error logs, performance metrics
Analytics - Usage patterns, feature adoption, user behavior
Security - Authentication attempts, suspicious activity
Performance - Response times, uptime, system health

🔧 How We Use Your Information

Service Provision

API Access - Provide data and services
Account Management - Manage your account and subscriptions
Support - Respond to inquiries and provide assistance
Billing - Process payments and manage billing

Service Improvement

Analytics - Analyze usage patterns and trends
Development - Improve features and functionality
Performance - Optimize system performance
Security - Detect and prevent fraud and abuse

Communication

Updates - Send service updates and announcements
Marketing - Share relevant content and offers (with consent)
Support - Respond to your questions and requests
Legal - Comply with legal obligations

We Do Not Sell Your Data

We do not sell, rent, or trade your personal information to third parties.

Service Providers

We may share information with trusted service providers:

Cloud Services - AWS, Google Cloud for hosting
Payment Processors - Stripe, PayPal for payments
Analytics - Google Analytics for website analytics
Support Tools - Zendesk, Intercom for customer support

Legal Requirements

We may disclose information when required by law:

Legal Process - Court orders, subpoenas
Government Requests - Law enforcement requests
Regulatory Compliance - Financial regulations, audits
Protection - Protect rights, property, or safety

Business Transfers

In the event of a merger, acquisition, or sale:

Due Diligence - Share information for evaluation
Transfer - Transfer data as part of the transaction
Notification - Notify you of any changes
Protection - Maintain privacy protections

🔒 Data Security

Security Measures

We implement comprehensive security measures:

Encryption - Data encrypted in transit and at rest
Access Controls - Role-based access and authentication
Monitoring - 24/7 security monitoring and alerts
Auditing - Regular security audits and assessments

Data Protection

We protect your data through:

Secure Infrastructure - Enterprise-grade security
Regular Updates - Security patches and updates
Employee Training - Security awareness training
Incident Response - Rapid response to security incidents

Data Retention

We retain data for as long as necessary:

Account Data - While your account is active
Usage Data - For service improvement and analytics
Legal Requirements - As required by law
Deletion - Delete data upon request

🌍 International Data Transfers

Data Locations

Your data may be processed in different countries:

United States - Primary data processing location
European Union - EU data centers for EU users
Asia-Pacific - Regional data centers for performance
Compliance - GDPR, CCPA, and other regulations

Safeguards

We ensure adequate protection for international transfers:

Standard Contractual Clauses - EU-approved safeguards
Adequacy Decisions - Countries with adequate protection
Certifications - Industry-standard certifications
Audits - Regular compliance audits

🍪 Cookies and Tracking

Types of Cookies

We use different types of cookies:

Essential - Required for basic functionality
Analytics - Understand usage patterns
Marketing - Personalized content and ads
Preferences - Remember your settings

You can control cookies through:

Browser Settings - Disable or delete cookies
Opt-out Tools - Third-party opt-out mechanisms
Preferences - Manage cookie preferences
Clear Data - Clear stored data

📱 Your Rights and Choices

Access and Control

You have the right to:

Access - Request a copy of your data
Correction - Update inaccurate information
Deletion - Request deletion of your data
Portability - Export your data

Communication Preferences

You can control communications:

Marketing - Opt out of marketing emails
Updates - Choose update frequency
Support - Preferred contact methods
Unsubscribe - Easy unsubscribe options

Account Settings

Manage your account through:

Dashboard - Update profile and preferences
API Keys - Manage API access
Billing - Update payment information
Security - Change passwords and settings

🏛️ Legal Framework

For EU users, you have additional rights:

Right to be Informed - Clear information about data use
Right of Access - Request your personal data
Right to Rectification - Correct inaccurate data
Right to Erasure - Request data deletion
Right to Restrict Processing - Limit data use
Right to Data Portability - Export your data
Right to Object - Object to data processing
Rights in Relation to Automated Decision Making

CCPA (California)

For California residents:

Right to Know - What data we collect and use
Right to Delete - Request deletion of data
Right to Opt-Out - Opt out of data sales
Right to Non-Discrimination - Equal service regardless of choices

Other Regulations

We comply with various regulations:

SOX - Sarbanes-Oxley Act
GLBA - Gramm-Leach-Bliley Act
PCI DSS - Payment Card Industry standards
SOC 2 - Security and availability controls

👥 Children's Privacy

Age Requirements

Our services are not intended for children under 13:

Minimum Age - 13 years or older
Parental Consent - Required for users under 18
Verification - Age verification when required
Deletion - Delete data for underage users

Protection Measures

We protect children's privacy through:

Age Screening - Verify user age
Content Filtering - Appropriate content
Parental Controls - Parental oversight tools
Education - Privacy education resources

🔄 Changes to This Policy

Policy Updates

We may update this policy from time to time:

Notification - Email notification of changes
Website - Updated policy on our website
Consent - Obtain consent for material changes
Effective Date - Clear effective date

Review Process

We regularly review and update our policy:

Annual Review - Comprehensive policy review
Legal Updates - Compliance with new laws
Business Changes - Reflect business changes
User Feedback - Incorporate user feedback

📞 Contact Us

Privacy Questions

If you have questions about this policy:

Email - Contact us through our contact form
Phone - Available during business hours
Address - San Francisco, CA
Form - Contact form

Data Protection Officer

For EU users, contact our DPO:

Email - Contact us through our contact form
Phone - Available during business hours
Address - London, UK

Complaints

You can file complaints with:

Internal - Contact us directly
Regulatory - File with data protection authorities
Legal - Pursue legal remedies
Mediation - Alternative dispute resolution

📋 Data Processing Details

We process data based on:

Consent - Explicit consent for specific purposes
Contract - Performance of our services
Legitimate Interest - Business operations and security
Legal Obligation - Compliance with laws

Data Categories

We process these categories of data:

Personal Data - Name, email, phone number
Financial Data - Payment information
Technical Data - IP address, device information
Usage Data - API calls, website activity

Retention Periods

Data retention periods:

Account Data - 7 years after account closure
Usage Data - 2 years for analytics
Billing Data - 7 years for tax purposes
Log Data - 90 days for security

Questions about privacy? Contact us through our contact form or learn more about our security practices.

📋 Information We Collect​

Personal Information​

Usage Information​

Technical Information​

🔧 How We Use Your Information​

Service Provision​

Service Improvement​

Communication​

📤 Information Sharing​

We Do Not Sell Your Data​

Service Providers​

Legal Requirements​

Business Transfers​

🔒 Data Security​

Security Measures​

Data Protection​

Data Retention​

🌍 International Data Transfers​

Data Locations​

Safeguards​

🍪 Cookies and Tracking​

Types of Cookies​

Cookie Management​

📱 Your Rights and Choices​

Access and Control​

Communication Preferences​

Account Settings​

🏛️ Legal Framework​

GDPR (European Union)​

CCPA (California)​

Other Regulations​

👥 Children's Privacy​

Age Requirements​

Protection Measures​

🔄 Changes to This Policy​

Policy Updates​

Review Process​

📞 Contact Us​

Privacy Questions​

Data Protection Officer​

Complaints​

📋 Data Processing Details​

Legal Basis (GDPR)​

Data Categories​

Retention Periods​