Privacy Policy

1. Data we collect

We collect only what is necessary to deliver secure, user-directed automation:

• Account data: name, email, authentication identifiers, billing details.
• Exchange credentials: Binance Futures API keys stored encrypted with trading-only scope; withdrawals are not requested or supported.
• Strategy context: prompts, AI responses, execution logs, device metadata (IP, user agent) to audit activity and detect abuse.
• Payment records: plan, invoices and receipts processed via PCI-DSS compliant providers.

2. How we use your data

Data is used strictly for operating and improving the service:

• Executing automation you configure, within your notional and symbol limits.
• Providing transparency through live logs, notifications and downloadable audit trails.
• Detecting fraud, preventing misuse and maintaining platform stability.
• Customer support and service communications (incidents, security alerts, product updates).

3. Security controls

Protecting trading access is critical. We apply layered safeguards:

• Encryption in transit (TLS 1.2+) and at rest for API keys and sensitive records.
• Role-based access and mandatory logging for any system process touching trading credentials.
• Exchange actions limited to the permissions you grant; withdrawal permissions must remain disabled.
• Automated monitoring for anomalous behaviour with the ability to pause automation instantly.

4. Your rights & choices

• Access & export: request a copy of your personal data and automation logs.
• Rectification: update account details and communication preferences at any time.
• Deletion: ask for account and personal data deletion, subject to legal retention obligations.
• Revoke keys: delete or rotate Binance API keys to immediately stop automation.
• Opt-out: unsubscribe from non-essential communications; security notices remain enabled.

5. Sharing & third parties

We do not sell personal data. Limited sharing happens only with vetted providers under confidentiality:

• Cloud infrastructure, email delivery, observability and billing providers.
• AI model providers (e.g., OpenAI, Gemini, DeepSeek) to process prompts you submit; trading credentials are never shared with them.
• Compliance or law enforcement requests when legally required.

6. Retention

Logs and strategy prompts are retained to provide transparency, resolve disputes and meet compliance obligations. Billing records are stored for statutory periods. You can request earlier deletion of certain data categories where applicable.

7. Cookies & analytics

We use essential cookies for authentication and session integrity, plus privacy-centric analytics to understand feature usage. You can adjust cookie preferences in your browser; blocking essential cookies may impact login and automation controls.

8. International transfers

Data may be processed in the United States and other regions where our providers operate with equivalent safeguards, contractual protections and encryption.

9. Contact & complaints

For privacy questions or to exercise your rights, email support@evertai.com. If we cannot resolve a concern, you may contact your local data protection authority.