Privacy Policy

This Privacy Policy ("Policy") explains how EdgeRecall ("EdgeRecall", "we", "us", or "our") collects, uses, stores, discloses, and protects personal data when you use our website, web application, trading journal, import tools, analytics, AI-assisted features, file attachments, product telemetry, and related support services (collectively, the "Service").

Please read this Policy carefully. By using the Service, creating an account, uploading or importing trading data, using AI-assisted features, uploading files, or contacting support, you acknowledge that you have read how your personal data is processed in accordance with this Policy.

If you do not agree with this Policy, you must not use the Service.

EdgeRecall is a private trading journal and analytics web product for individual users. We process data to let you keep a trading journal, import CSV files, analyze trading results, use AI-assisted features, store attachments, receive support, and help keep the Service secure.

We do not sell your private trading records. We do not make your data public by default. We do not use private user content to train general-purpose AI models.

We aim to collect only the data needed to operate, secure, support, and improve the Service.

For the purposes of applicable data protection laws, EdgeRecall is the controller of personal data processed in connection with the Service.

The Service is intended for individual users and is not currently offered as a B2B product for organizations. If EdgeRecall is offered to organizations in the future, additional data processing terms may apply.

For privacy and data protection questions, you can contact us at support@edgerecall.com.

This Policy applies to users of the Service, website visitors, people who create an account, upload data, use AI-assisted features, send support requests, or otherwise interact with EdgeRecall.

This Policy does not apply to third-party websites, applications, exchanges, brokers, trading platforms, file export tools, or other services that we do not control. Those third-party services may have their own terms and privacy policies.

We may collect and process the following categories of data.

When you create an account or sign in to the Service, we may process:

We do not store your password in plain text.

When you use the trading journal, manual entry, or import features, we may process:

You are responsible for ensuring that the data you enter or import is accurate, lawful, and belongs to you or is otherwise available to you for lawful use.

If you upload a CSV file, we may process the file itself, its structure, column headers, preview data, selected column mappings, staged rows, import errors, and final records created after import confirmation.

CSV files may contain more information than EdgeRecall requires. Before uploading a file, you should review it and remove unnecessary personal, financial, confidential, or sensitive data if it is not needed for the Service.

CSV compatibility depends on supported columns and file formatting; not all broker or exchange exports are supported.

If you upload or create materials in the Service, we may process:

These data may be used for storage, previews, search, analysis, AI-assisted features, transcription, support, security, and troubleshooting.

Do not upload passwords, API keys, private keys, seed phrases, payment card data, identity documents, or other sensitive information unless it is required to use the Service.

When you use AI-assisted features, we may process:

AI-assisted features may be processed using third-party AI providers and infrastructure providers. We do not use private user content to train general-purpose AI models. Any optional use of private user content for additional model training or similar purposes would require a clear opt-in or another valid legal basis where permitted by applicable law.

AI outputs may be inaccurate or incomplete. They are not investment, financial, tax, legal, or professional advice.

We may collect data about how the Service is used, including:

These data help us operate the Service, detect errors, improve reliability, protect accounts, prevent abuse, and understand which features need improvement.

We may use cookies, local storage, session storage, and similar technologies to:

Some cookies and similar technologies are necessary for the Service to work. For analytics cookies or other non-strictly necessary technologies, we will request consent or provide choices where required by applicable law.

Details may be described in a separate Cookie Policy.

If you contact us, send a bug report, provide feedback, or submit a support request, we may process:

The Service may currently be offered for free, in beta, or under limited access. If we introduce paid features, subscriptions, or purchases in the future, we may process data needed for payment, invoicing, taxes, payment confirmation, support, and payment error prevention.

Payments may be processed by third-party payment providers. We do not intend to store full payment card details on our own servers unless expressly stated in a separate policy or notice.

EdgeRecall does not currently require or store user-created exchange or broker API keys.

EdgeRecall does not execute trades, custody assets, receive funds, withdraw funds, or act as a broker, exchange, custodian, financial adviser, or investment adviser.

You should not upload data that is not needed for the product, including passwords, private keys, seed phrases, payment cards, identity documents, or sensitive data belonging to third parties.

We receive data from the following sources:

We use personal data for the following purposes.

We process data to create and maintain your account, save trade records, perform CSV imports, display analytics, store attachments, create reviews, provide AI-assisted features, and operate core product functionality.

We process data to provide AI summaries, AI chat, journaling prompts, explanations, transcription, tagging suggestions, behavior analysis, and other AI-assisted features.

We may limit AI requests if they seek investment recommendations, violate applicable rules, or create unsafe use risks.

We use data to answer questions, fix bugs, investigate issues, restore account access, and improve support quality.

We use data to protect accounts, detect errors, investigate suspicious activity, prevent abuse, maintain Service availability, and protect system integrity.

We use telemetry, diagnostic events, error logs, and aggregated or de-identified data to understand how the product works, which features are used, where errors occur, and what should be improved.

We do not use private user content to train general-purpose AI models.

We may use your email to send service messages, security notifications, changes to terms or policies, support responses, and important product notices.

If we send marketing messages in the future, we will do so in accordance with applicable law and provide an unsubscribe option where required by law.

We may use data to comply with applicable legal obligations, handle claims, protect rights, resolve disputes, keep internal records, and enforce our Terms of Use.

If GDPR, UK GDPR, or similar data protection laws apply, we process personal data on the following legal bases:

You may withdraw consent at any time where processing is based on consent. Withdrawal of consent does not affect the lawfulness of processing carried out before withdrawal.

We do not sell your private trading records.

We may disclose data to the following categories of recipients.

We use Railway as a hosting and infrastructure provider for the Service.

We may also use a limited number of other service providers where necessary to operate specific Service features, such as authentication, file storage, AI-assisted features, transcription, email notifications, monitoring, analytics, support, or payments if paid features are introduced in the future.

These providers process data on our behalf and should use data only to provide the relevant services to us, unless otherwise permitted by applicable law, their terms, and this Policy.

If the list of key providers materially changes, we will update this Policy or provide an additional notice where required by applicable law.

If you visit a third-party website, use a third-party export tool, obtain a CSV file from a broker or exchange, or otherwise interact with a third-party service independently, that service processes your data under its own rules. We do not control those services.

We may disclose data if we believe it is necessary to comply with applicable law, a court order, a mandatory request, protect our rights, protect user safety, investigate violations, or prevent harm.

If EdgeRecall is involved in a merger, acquisition, reorganization, sale of assets, financing, project transfer, or similar corporate transaction, data may be transferred as part of that transaction, subject to reasonable safeguards and applicable notices.

We may disclose data with your consent or at your direction, for example if you choose to use an export, sharing, or integration feature in the future.

Some AI-assisted features may be performed using third-party AI providers. In those cases, data needed for the request may be shared with the relevant provider for processing and response generation.

We aim to share only the context needed for the specific AI-assisted feature.

We do not use private user content to train general-purpose AI models. If an optional feature involving the use of private user content for additional model training or similar purposes is introduced in the future, that feature will require a clear opt-in or another valid legal basis where permitted by applicable law.

We keep personal data no longer than necessary for the purposes described in this Policy, including providing the Service, maintaining your account, security, troubleshooting, complying with legal requirements, resolving disputes, and legitimate business needs.

As a general rule, the following retention periods apply unless a longer period is required by law, security needs, rights protection, dispute resolution, or abuse prevention:

When data is no longer needed, we delete, de-identify, or anonymize it in accordance with our retention practices and applicable law.

You may request account deletion or data export by emailing support@edgerecall.com. In the current version, account deletion and data export are handled through support.

After a deletion request, we will delete or de-identify personal data associated with your account, except for data we need to keep for legal requirements, security, abuse prevention, dispute resolution, backup retention, or other legitimate purposes.

Some data may remain in backups and logs for a limited period before deletion through normal backup cycles.

If you request data export, we will provide it in a reasonable format where technically feasible and required by applicable law.

Depending on your jurisdiction, you may have the following rights regarding personal data:

To exercise your rights, contact us at support@edgerecall.com.

We may ask you to verify your identity before fulfilling a request. We will respond within the time required by applicable law. In some cases, we may deny a request or fulfill it only partially where permitted by law, such as due to legal obligations, security, protection of other people's rights, or technical limitations.

EdgeRecall may use automated processing and AI-assisted features to create summaries, prompts, reviews, tags, transcripts, analytics, and other supporting outputs.

These features are intended to support journaling, analysis, and educational understanding of your own trading activity. They are not intended to make decisions for you and are not investment, financial, tax, legal, or professional advice.

We do not use AI-assisted features to make decisions that have legal or similarly significant effects on you without human involvement, unless expressly disclosed and permitted by applicable law.

We use reasonable technical and organizational measures to protect personal data, including measures designed to protect accounts, systems, data, files, and communications.

However, no method of internet transmission or electronic storage is completely secure. We therefore cannot guarantee absolute security.

You are also responsible for securing your account, email, device, password, and any files you upload to the Service. Do not upload passwords, API keys, private keys, seed phrases, or other sensitive information unless it is required to use the Service.

If you believe your account or data has been compromised, contact us at support@edgerecall.com.

The Service is private by default. We do not publish your trade records, attachments, notes, AI chats, or analytics publicly without your action or permission.

If we add sharing features, public profiles, community features, or trade publication features in the future, we will provide additional settings, notices, or terms where needed. You should carefully review what data you choose to publish or share with others.

The Service is not intended for people under 18. We do not knowingly collect personal data from children.

If you believe a child has provided us with personal data, contact us at support@edgerecall.com, and we will take reasonable steps to delete such data where required by applicable law.

We may update this Policy from time to time. If changes are material, we will take reasonable steps to notify you, such as by email, in-app notice, or posting an updated version on the website.

The updated Policy becomes effective on the date stated in the updated version. Continuing to use the Service after the updated Policy becomes effective means you have reviewed the updated Policy.

If you have questions about this Policy, data processing, your rights, or security, contact us:

Email: support@edgerecall.com