Privacy

Privacy Policy

This Privacy Policy outlines the information practices of Tradomate.one ("we," "us," or "our") and applies to personal data we collect from you when you visit this website, create an account, or use our applications or services ("you" or "your"). It explains what personal data we collect, why we collect it, how it is used, how it is stored, and how we share it.

This policy is issued in compliance with the Digital Personal Data Protection Act, 2023 ("DPDP Act") and the Digital Personal Data Protection Rules, 2025 ("DPDP Rules"), and is presented as a standalone notice as required under Rule 3 of the DPDP Rules.

By using our Service or submitting your personal data, you agree to accept the terms of this Privacy Policy. If you disagree at any time, please stop using our services and request deletion of your account.

1. Personal Data We Collect

Account Information

  • When you register, we collect your name, email address, and any other information required for account creation.

Authentication Information

  • To enable secure login via Single Sign-On (SSO), we collect and store authentication tokens.
  • When you sign in using Google, Twitter, or LinkedIn, that service provides us your username and associated email address. We do not control how third-party services process your data.

Usage Information

  • We collect data on how you interact with our platform, including features used, historical data accessed, and backtesting results.

Device & Log Information

  • We collect IP addresses, device type, operating system, browser version, referring/exit pages, and date/time stamps. This is used to administer the site, prevent abuse, and ensure compliance with our Terms of Service. IP addresses may be considered personal data in certain jurisdictions and are treated in accordance with this policy.

WhatsApp Communications

  • We collect information related to your communications with Tradomate, including your phone number, communication preferences, message and conversation records, message delivery and engagement metadata, and customer support interactions conducted through WhatsApp or other supported communication channels.

2. How We Use Your Personal Data

We process your personal data only for the specific purposes for which it was collected, as follows:

  • Service Delivery: To provide historical data access, backtesting, and other platform features.
  • Improving User Experience: To analyze usage patterns and personalize your experience.
  • Communication: To send service-related messages, updates, and newsletters. You may opt out of non-essential communications at any time.
  • WhatsApp Communication: We use your data to send authentication, transactional, support, subscribed alerts and updates, and promotional communications through WhatsApp using approved template-based messages where required and where users have provided the necessary consent or opted in to receive such communications. We also use this information to improve communication reliability and delivery, and to maintain platform security, integrity, and abuse prevention.
  • Security & Fraud Prevention: To detect and prevent spam, abuse, and unauthorized access.
  • Legal Compliance: To meet our obligations under applicable laws and regulations.

We collect and use only the personal data that is necessary for the above purposes (data minimisation).

3. Consent and Your Right to Withdraw

Where we rely on your consent to process personal data, you have the right to withdraw that consent at any time. Withdrawing consent will not affect the lawfulness of processing carried out before withdrawal.

To withdraw consent, exercise your rights, or submit a complaint to the Data Protection Board of India (DPBI), please contact us at: [email protected]

Note: Withdrawing consent is as easy as providing it. Simply email us and we will act on your request promptly.

4. Your Rights as a Data Principal (Indian Users)

Under the Digital Personal Data Protection Act, 2023, you (as a "Data Principal") have the following rights:

  • Right to Access: You may request a summary of your personal data being processed and the identities of Data Fiduciaries/Processors handling it.
  • Right to Correction & Erasure: You may request correction, updating, or deletion of your personal data.
  • Right to Withdraw Consent: You may withdraw consent for processing at any time.
  • Right to Grievance Redressal: You have the right to a readily available mechanism to raise complaints (see Section 10).
  • Right to Nominate: You may nominate another individual to exercise your data rights on your behalf in the event of your death or incapacity.

To exercise any of these rights, contact us at [email protected] . We will respond within 30 days. If your grievance remains unresolved, you may escalate to the Data Protection Board of India (DPBI).

5. Information Sharing

Third-Party Service Providers

  • We may share information with third-party service providers who assist in delivering our services. These providers are bound by confidentiality obligations and may only use your data for specified purposes. This may include providers supporting our infrastructure, security, customer support, monitoring services, and communication services, including Meta and the WhatsApp Business Platform. We may also disclose information where required by applicable law or legal process.

Legal Compliance

  • We may disclose information when required by law, in response to legal requests, court orders, or government regulations.

Analytics Providers

  • We use Google Analytics and PostHog as analytics services. Privacy practices of these providers can be found on their respective websites. We use this data solely to improve our services.

No Sale of Data

We do not sell, rent, or trade your personal data to any third party. We do not sell customer lists, and your name will never be shared with catalog companies or advertisers.

6. WhatsApp Communications

Tradomate uses WhatsApp to send the following categories of messages:

  • Authentication messages, including OTPs and login verification
  • Account and transactional notifications, including billing, payment, and account-related updates
  • Subscribed alerts and updates, including price alerts, screener notifications, and market-related updates requested by users
  • Customer support communications in response to user inquiries
  • Promotional and marketing communications, where users have explicitly opted in to receive such messages

Users may opt in to receive WhatsApp communications by providing their phone number during signup, enabling WhatsApp notifications within account settings, or subscribing to specific alerts or updates. We maintain records of user consent in accordance with applicable laws and platform requirements.

WhatsApp messages are delivered through Meta's WhatsApp Business Platform and may be subject to Meta's terms, policies, and platform requirements.

Users may opt out of promotional WhatsApp communications at any time by replying STOP, using available unsubscribe options, or updating their communication preferences. Opt-out requests are processed promptly. Transactional, security, and service-related communications may still be sent where necessary to provide the platform and maintain account security.

Users may also:

  • Request deletion of their WhatsApp communication records by contacting [email protected]
  • Request a copy of their communication data in a portable format by contacting [email protected]
  • Raise privacy, communication, or grievance-related concerns with our Grievance Officer

Tradomate sends WhatsApp communications only to users who have provided the appropriate consent or opted in to receive such communications. We do not send unsolicited messages or sell phone numbers to third parties for marketing purposes.

7. Personal Data Breach Notification

In the event of a personal data breach that may affect your rights or interests, we will:

  • Notify the Data Protection Board of India (DPBI) immediately upon becoming aware, with a detailed breach report submitted within 72 hours.
  • Inform you (the affected Data Principal) without undue delay, providing sufficient details to help you take protective measures.
  • Take immediate steps to contain the breach and mitigate its effects.

We maintain security logs for a minimum of one year to support breach detection and investigation.

8. Security

We employ industry-standard security measures including encryption, obfuscation or masking of personal data, access controls, regular access log reviews, and periodic security audits. We also maintain contractual provisions with our data processors to ensure they implement equivalent safeguards.

9. Data Retention and Deletion

We retain your personal data for as long as necessary to provide our services, comply with legal obligations, resolve disputes, and enforce agreements. Once the purpose for which data was collected is fulfilled, we will erase it securely, unless retention is required by law.

We will notify you at least 48 hours before scheduled erasure of your data, giving you an opportunity to engage with us if you wish to retain it.

Account Deletion Requests

To request deletion of all your personal data, send an email to [email protected] . Upon receipt:

  • Your account will be reviewed for any pending payments.
  • If no dues are outstanding, your data will be deleted within 7 days.
  • If dues are pending, deletion will be paused until resolved.

Note: Search engines and third parties may retain copies of publicly available information even after your account is deleted.

10. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal data from children.

In the event we discover that a child's data has been collected without verifiable parental or guardian consent, we will delete such data promptly. If you believe we have inadvertently collected a child's data, please contact us immediately at [email protected] .

We do not engage in behavioural monitoring or targeted advertising directed at children.

11. Grievance Officer

In accordance with the Digital Personal Data Protection Act, 2023 and the DPDP Rules, 2025, we have appointed a Grievance Officer as the point of contact for any complaints, concerns, or requests related to the processing of your personal data.

Name: Yashu Gupta

Phone Number: 6364661789

Email: [email protected]

We will acknowledge your grievance upon receipt and endeavour to resolve it within 30 days. If your grievance is not resolved to your satisfaction within this period, you may escalate the matter to the Data Protection Board of India (DPBI).

12. International Data Transfers

If you are located outside our primary operating jurisdiction, your data may be transferred to, stored, and processed in a different country. Data transfers outside India are subject to restrictions as may be notified by the Central Government. By using our services, you consent to such transfers in accordance with applicable law.

13. Data Subject Rights (For EU/EEA Users)

If you are located in the European Economic Area (EEA), you also have rights under the General Data Protection Regulation (GDPR), including:

  • Right of Access: Request access to your personal data.
  • Right to Rectification: Request corrections to inaccurate or incomplete data.
  • Right to Erasure: Request deletion of your personal data.
  • Right to Restrict Processing: Request restriction of how your data is processed.
  • Right to Object: Object to processing based on legitimate interests, direct marketing, or profiling.
  • Right to Data Portability: Request a copy of your data in a structured, machine-readable format.

To exercise these rights, contact us at [email protected] .

14. Updates to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or applicable laws. If we make significant changes, we will notify you by email or by posting a prominent notice on our platform prior to the changes taking effect.

15. Contact Us

For general questions or concerns about this Privacy Policy, contact us at:

Email: [email protected]

Grievance Email: [email protected]