Privacy Policy

Effective: February 2026

1. Who We Are

TradeTEST.TRAINING is operated from Oakland, California. This policy applies to tradetest.training and any related services.

2. Information We Collect

a) Information You Provide

Email address, name (if provided), and payment information. Payment is processed by Stripe — we do not store card numbers.

b) Information Collected Automatically

IP address, browser type, device type, operating system, pages visited, time spent on pages, and referring URL. Collected via PostHog analytics.

c) Study and Performance Data

Quiz answers, scores, study progress, time per question, adaptive learning algorithm data, and spaced repetition schedules. This data is used to personalize your study experience.

d) Payment Data

Stripe processes payments. We store your Stripe customer ID, purchase date, product purchased, and payment status. We do not store credit card numbers, CVV, or full card details.

e) AI Processing Data

Your quiz performance patterns are processed by AI (via Groq) to adapt question difficulty and study recommendations. This processing happens in real time and the raw data is not stored by the AI provider.

3. How We Use Your Information

  • To provide and personalize the exam prep service
  • To process payments via Stripe
  • To send transactional emails (purchase confirmations, password resets) via Resend
  • To analyze usage patterns and improve the product via PostHog
  • To adapt question difficulty using AI-powered algorithms
  • To respond to support requests
  • To enforce our Terms of Service and protect against content theft
  • To comply with legal obligations

4. Third-Party Services

We use the following third-party services to operate this platform. Each receives only the data necessary to perform its function.

  • Stripe payment processing. Receives email and payment details.
  • Supabase database and authentication. Stores account data.
  • Vercel hosting. May process IP addresses and request metadata.
  • PostHog analytics. Receives anonymized usage data, IP address, and device info.
  • Resend transactional email. Receives email address.
  • Groq AI inference. Receives anonymized quiz performance data for adaptive learning.

5. Cookies and Tracking

  • We use essential cookies for authentication and session management.
  • PostHog may use cookies or similar technologies for analytics.
  • We do not use advertising cookies or sell data to advertisers.

6. Do Not Track Signals

We respect Do Not Track browser signals. When we detect a Do Not Track signal, we limit analytics data collection to essential service functionality only.

7. Third-Party Data Collection

Third parties listed in Section 4 may collect information about your online activities over time and across different websites when you use our service, as described in their respective privacy policies linked above.

8. Data Sharing

  • We do not sell your personal information to anyone.
  • We do not share your personal information for advertising purposes.
  • We share data only with the third-party service providers listed in Section 4, and only as necessary to provide the service.
  • We may disclose information if required by law, court order, or government request.
  • If TradeTEST.TRAINING is acquired or merged, your data may transfer to the new entity. We will notify you via email before any such transfer.

9. Data Retention

  • Account data is retained for as long as your account is active.
  • Study progress and quiz data is retained for as long as your account is active to maintain your personalized learning experience.
  • Payment records are retained for 7 years for tax and legal compliance.
  • After account deletion, personal data is deleted within 30 days. Anonymized, aggregated analytics data may be retained indefinitely.

10. Your Rights

  • Access: You can request a copy of all personal data we hold about you.
  • Correction: You can update your email and profile information in your account settings.
  • Deletion: You can delete your account and all associated personal data by submitting a deletion request. Deletion is completed within 30 days.
  • Data portability: You can request your study progress and quiz history in a machine-readable format.
  • California residents: Although we do not currently meet CCPA thresholds, we voluntarily honor requests to know what data we collect, requests to delete, and requests to opt out of sale (we do not sell data). Submit requests to our privacy team.

11. Data Security

  • All data is encrypted in transit (TLS/SSL) and at rest.
  • Authentication is handled by Supabase with industry-standard security practices.
  • Payment processing is handled by Stripe, which is PCI DSS Level 1 certified.
  • We do not store passwords in plain text.
  • Despite these measures, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

12. Children

This service is not directed to anyone under 16 years of age. We do not knowingly collect personal information from children under 16. If we learn we have collected data from a child under 16, we will delete it promptly.

13. Changes to This Policy

We may update this policy from time to time. When we make material changes, we will notify you by email and update the “Effective” date. Your continued use after changes constitutes acceptance.

14. How to Review and Request Changes to Your Information

You can review your account information by logging in to your account. To request changes or deletion, contact our privacy team. We will respond within 30 days.

15. Contact

Privacy questions? Contact our privacy team.

General support? Contact our support team.