Privacy Policy
1. Who we are
The Trading Optimizer is software-as-a-service that connects to your Alpaca paper trading account and runs automated trades according to a strategy you select. These privacy practices apply to thetradingoptimizer.com and any subdomains.
2. Data we collect
Information you provide directly
| Data | Why we collect it | How we protect it |
|---|---|---|
| Email address | Account identification, authentication, security alerts, opt-in trade notifications | Stored in Cognito + DynamoDB, encrypted at rest with AWS KMS |
| Password | Account authentication | Hashed by Cognito (SRP); we never see the plaintext password |
| Alpaca API key + secret | Required to execute trades on your behalf | Envelope-encrypted with a dedicated AWS KMS key (cred-cmk) before storage. Decryptable only by the bot worker. Never logged in plaintext. |
| Strategy selection | Determines which trading algorithm runs on your account | Stored in DynamoDB, encrypted at rest |
| Notification preferences | Controls which emails we send you | Stored in DynamoDB, encrypted at rest |
Information we generate from your usage
| Data | Why |
|---|---|
| Trade history (orders placed by the bot) | To populate your dashboard; for performance analytics |
| Daily P&L, equity curve, win rate | To populate your dashboard |
| Audit log of account actions | Security, debugging, and (rare) admin support cases |
| Server logs (IP, user-agent, timestamps) | Security, abuse prevention, debugging. Retained 30 days. |
What we DO NOT collect
- Your Alpaca account balance, holdings, or P&L (we read these from your Alpaca account at runtime but do not persist them beyond what's needed for the dashboard).
- Your bank account, payment-card, or wire-transfer information. We don't take payment during the pilot. If we add paid tiers later, payment processing will be handled by Stripe; we will never see your card numbers.
- Behavioral tracking, ad-tracking, cross-site cookies, or browser fingerprinting.
- Anything from third-party data brokers.
3. How we use your data
- To run your bot. The trading worker decrypts your Alpaca credentials each trading day, executes trades on your account, and writes the results to your dashboard. This is the core service.
- To authenticate you. Cognito uses your email + password to verify you when you sign in.
- To send you authentication emails. Email verification, password reset, and security alerts (required).
- To send you trade notifications IF you opted in. Default OFF. One-click unsubscribe in every such email.
- To investigate security incidents or support requests, with appropriate authentication and audit trail.
4. Who we share data with
We share the minimum data required to provide the Service with these subprocessors:
| Subprocessor | What they see | Why |
|---|---|---|
| Amazon Web Services (AWS) | All data (we host everything here) | Cloud infrastructure: Cognito, DynamoDB, Lambda, KMS, SES (email delivery), EC2 |
| Alpaca Markets, Inc. | Your API key + secret + trade requests we submit on your behalf | To execute trades on the account you authorized |
| (Future) Stripe | Payment data (card, billing address) — never your trading data | If/when we add paid tiers, payments are processed by Stripe |
We do NOT sell your data, share it for marketing purposes, or transfer it to third parties for any purpose unrelated to providing the Service.
We may disclose data if required by a valid legal process (subpoena, court order, regulatory request) — we will notify you unless legally prohibited from doing so.
5. Where your data lives
All data is stored in AWS data centers in the US East (N. Virginia) region. We may add multi-region replication for redundancy; we will not store your data outside the US.
6. How long we keep your data
- While your account is active: we retain all account data.
- If you delete your account: account records and Alpaca credentials are purged from our database within 30 days. Audit logs (which identify you only by your Cognito sub, not by name or email) may be retained for up to 1 year for security purposes.
- Server logs: 30 days.
- Backups: AWS Backup retains snapshots for 35 days; after that they are deleted. Backups are encrypted with KMS.
7. Your rights
You have the right to:
- Access your data. Email us and we will provide a copy.
- Correct your data. Most fields are user-editable in the dashboard; for others, email us.
- Delete your data. Delete your account from the dashboard settings page — see Section 6 for retention specifics.
- Object to processing for marketing purposes. We don't process for marketing, but you can disable opt-in trade notifications at any time via the dashboard.
- Portability: Request a copy of your data in a structured, machine-readable format. We will provide one within 30 days.
California residents have additional rights under the CCPA. EEA / UK residents have additional rights under GDPR. Email us to exercise any of these rights.
8. Cookies + tracking
We use a minimal set of essential cookies for authentication (Cognito session tokens). We do NOT use:
- Behavioral / advertising cookies
- Third-party tracking pixels
- Google Analytics, Facebook Pixel, or similar
- Cross-site cookies
If we add basic analytics later (e.g., for sign-up funnel optimization), we will use a privacy-respecting tool (e.g., Plausible, Fathom) and update this policy.
9. Security
- All data encrypted at rest with AWS KMS (customer-managed keys).
- All data in transit over TLS 1.2 or higher.
- Your Alpaca API secret is envelope-encrypted with a dedicated KMS key (cred-cmk) — only the trading worker IAM role can decrypt. Our user-facing API explicitly cannot.
- IAM policies enforce per-user row isolation via the dynamodb:LeadingKeys condition.
- Admin access to user data is audited; every admin view writes a tamper- evident log entry.
- Daily automated backups via AWS Backup, retained 35 days.
Despite reasonable safeguards, no system is impenetrable. If we detect a breach affecting your data, we will notify you by email within 72 hours.
10. Children
The Service is not for children. We do not knowingly collect data from anyone under 18. If we learn we have collected data from a child, we will delete it.
11. Changes to this policy
We may update this policy from time to time. Material changes will be emailed to users with at least 14 days' notice. The "Last updated" date at the top of this page indicates when the policy was last revised.
12. Contact
Questions, requests, or complaints? Email support@thetradingoptimizer.com.