Last updated: May 21, 2026
We collect several categories of data: (1) Anonymous browsing analytics — pseudonymous visitor ID (visitor_id), pages visited, interactions, device and browser type, and visit source. (2) Account data — email address, subscription plan, portfolio holdings, and watchlists. (3) Security records — IP address and User-Agent at sensitive events (sign-in, accept/decline of the Terms of Service) for legal evidentiary purposes. (4) Notification tokens — when you enable push notifications, we store your device token (Web Push or Firebase Cloud Messaging) to deliver alerts. (5) SMS payment data — when you subscribe via Vodafone Cash or InstaPay, we store the sender phone number and a copy of the bank confirmation SMS (to auto-match the payment). We do not collect card numbers or sensitive banking credentials.
We use this data to improve the site, deliver notifications you've opted into, auto-confirm payments, and maintain a legal audit record of your Terms acceptance. Behavioral statistics are collected anonymously and aren't tied to your personal account data except where necessary to operate the service (e.g., linking your subscription to your account).
We use three categories of cookies: (1) Essential cookies to operate the site and authenticate you. (2) Analytics cookies to understand usage and improve performance. (3) Ad measurement cookies. Details of the services used can be found in the Data Sharing section below. You can disable cookies from your browser settings.
We do not sell your data. We use trusted third-party services: Google Analytics + PostHog (usage statistics), Microsoft Clarity (anonymized session recordings + heatmaps with automatic masking of sensitive fields), Meta Pixel (Facebook ad measurement), Firebase Cloud Messaging (mobile push notifications), Web Push Protocol (browser push), Resend/Brevo (email delivery). These services store data on their own servers under their respective privacy policies.
The mobile app supports fingerprint/face biometric lock to secure the app. Biometric data remains strictly on your device via iOS Keychain / Android Keystore — it is never transmitted to our servers and nobody on our side can read it.
When you accept or decline the Terms of Service, we keep a permanent record of: the version accepted, the date+time of the decision, your IP address, and your User-Agent. These records are retained as legal evidence and are NOT deleted even if you delete your account (but they are decoupled from your personal data).
You can request deletion of your account and all your data at any time by contacting us. You can also request an export of your stored data. Note that Terms acceptance records are retained as legal evidence but decoupled from your personal data.
For any privacy-related inquiries, contact us via email: [email protected]
FoudaLens © 2026