Synapse Terminal LLC (“we”) operates synapse-terminal.com. This policy explains what data we collect, how we use it, and your rights.
1. Data We Collect
Account data: email address, password (hashed, never stored in plain text), subscription tier, payment status.
Usage data: pages visited, features used, session duration — collected anonymously via PostHog analytics.
Journal data: ICT Compass journal entries, trading session notes, and screenshots you voluntarily submit. This data is private to your account.
Payment data: we do not store your card details. All payment information is handled directly by Paddle.com (our Merchant of Record). We receive only: subscription status, Paddle customer ID, and transaction reference numbers.
Communication data: emails you send to our support address.
2. How We Use Your Data
- To create and manage your account
- To deliver the subscription products you purchased
- To send transactional emails (receipts, trial reminders, feature updates) via Resend
- To improve the Service using aggregated, anonymous analytics
- To comply with legal obligations
We do not sell your personal data. We do not use your data for advertising.
3. Payment Processing (Paddle)
Payments are processed by Paddle.com Market Limited (registered in England and Wales) and Paddle.com USA Inc. Paddle is the Merchant of Record for all transactions. Paddle’s privacy policy is available at paddle.com/legal/privacy.
4. Third-Party Services
We use the following services to operate the platform:
| Service | Purpose | Data shared |
|---|---|---|
| Supabase | Database and authentication | Account data |
| Paddle | Payment processing | Email, subscription status |
| Resend | Transactional email | Email address |
| PostHog | Anonymous usage analytics | Anonymized events |
| Discord | Optional community access | Discord username |
| Telegram | Optional trade brief delivery | Telegram chat ID |
5. Data Retention
We retain your account and journal data while your account is active and for 90 days after deletion. Payment records are retained as required by applicable law (typically 7 years). You may request deletion of your journal data at any time.
6. Your Rights
Depending on your jurisdiction, you may have rights to:
- Access the personal data we hold about you
- Correct inaccurate data
- Delete your account and data
- Withdraw consent for non-essential processing
- Data portability (export your journal entries as JSON)
To exercise any right: privacy@synapse-terminal.com
EU/EEA users: We process your data on the basis of contract performance (to deliver your subscription). We comply with GDPR. Our data processor agreements are in place with all third-party services listed above.
7. Cookies
We use one first-party session cookie for authentication. We do not use advertising or tracking cookies.
8. Security
Account passwords are hashed using bcrypt. All data is transmitted over HTTPS. Database access is protected by row-level security (RLS) policies — you can only access your own data. Payment data never touches our servers.
9. Changes
We will notify you by email of material changes to this policy. Continued use of the Service after changes constitutes acceptance.
10. Contact
privacy@synapse-terminal.com
Synapse Terminal LLC, Wyoming, United States