Privacy Policy

Effective Date: January 1, 2025

Last Updated: January 1, 2025

1. Introduction

This Privacy Policy explains how Flipr.Cloud ("Flipr", "we", "us", or "our") collects, uses, stores, and protects personal data when you use our services, website, and applications (collectively, the "Services").

We process personal data in accordance with applicable data protection laws, including the EU General Data Protection Regulation (GDPR).

2. Data Controller

The data controller responsible for personal data processing is:

Flipr.Cloud Operator Contact: legal@flipr.cloud

Additional legal identification details are provided upon legally valid request where required by applicable law.

3. Information We Collect

We collect only data necessary to provide and secure the Services.

Information you provide

  • Account credentials (email, username, password hash)
  • Exchange API credentials
  • Webhook configuration data
  • Notification settings
  • Support communications

Automatically collected data

  • Login timestamps
  • IP address
  • Device/browser metadata
  • Usage logs
  • Error diagnostics
  • Trading execution logs

Third-party data sources

  • Exchange execution responses
  • Balance and position data via API
  • Payment confirmation data (if subscriptions enabled)

4. Special Category: API Credentials

Exchange API keys and secrets are treated as confidential technical credentials.

They are:

  • encrypted at rest
  • encrypted in transit
  • accessible only to authorized execution systems
  • never stored in plaintext

We do not use API credentials for any purpose other than executing user-authorized instructions.

5. Legal Bases for Processing

We process data under the following legal bases:

  • Contract performance — to operate the platform
  • Legitimate interests — security, fraud prevention, infrastructure integrity
  • Legal obligation — compliance with applicable laws
  • Consent — marketing and optional cookies

6. How We Use Data

We use personal data to:

  • operate the platform
  • execute webhook instructions
  • connect to exchanges
  • authenticate users
  • provide logs and analytics
  • improve performance
  • detect abuse or fraud
  • respond to support requests

We do not sell personal data.

7. Data Sharing

We may share data only with:

  • exchanges connected by you
  • infrastructure providers
  • analytics providers (anonymized where possible)
  • legal authorities when required

All service providers are contractually obligated to protect data.

8. International Transfers

Data may be processed in jurisdictions outside your country.

Where required, transfers rely on lawful safeguards such as:

  • Standard Contractual Clauses
  • Adequacy decisions
  • Equivalent legal mechanisms

9. Data Retention

We retain data only as long as necessary.

Typical retention periods:

Data TypeRetention
Account datawhile account active
Trade logsup to 6 years
Security logsup to 3 years
Support messagesup to 3 years

Retention may be extended if required for legal defense or fraud prevention.

10. Security Measures

We implement appropriate technical and organizational measures proportionate to risk, including:

  • encryption in transit (TLS)
  • encryption at rest
  • credential hashing
  • access controls
  • infrastructure monitoring
  • vulnerability patching

No system can guarantee absolute security.

11. User Responsibilities

Users are responsible for:

  • protecting login credentials
  • configuring exchange API permissions appropriately
  • securing their devices

We strongly recommend disabling withdrawal permissions on exchange API keys.

12. Your Rights

Subject to applicable law, you may request:

  • access to your data
  • correction
  • deletion
  • restriction of processing
  • portability
  • objection to processing

Requests: legal@flipr.cloud

We respond within legally required timeframes.

13. Cookies

We use:

  • necessary cookies (authentication/security)
  • optional analytics cookies (consent-based)
  • preference cookies

You may disable cookies in browser settings.

14. Children

Services are not intended for individuals under 18. Accounts identified as minors will be removed.

15. Third-Party Services

When connecting third-party services (e.g. exchanges), their own privacy policies apply.

We are not responsible for third-party practices.

16. Changes to Policy

We may update this policy to reflect legal, technical, or operational changes.

Material changes will be communicated via email or platform notice.

17. Financial Disclaimer

Flipr.Cloud is a software automation tool. We do not provide investment advice, brokerage services, or asset custody.

Users remain fully responsible for their trading decisions.

18. Contact

Privacy inquiries: legal@flipr.cloud

End of Policy

For privacy inquiries, contact: legal@flipr.cloud