TradingPilot

Privacy Policy

Last updated: March 2, 2026

1. Introduction

TradingPilot ("we", "us", "our"), operating at tradingpilot.com, is committed to protecting your privacy. This Privacy Policy explains what data we collect, how we use it, and your rights regarding your personal information.

2. Data We Collect

2.1 Account Data

When you create an account, we collect your email address, display name, and username. If you use social login (Google, Discord), we receive your name and email from the provider.

2.2 Profile Data

You may optionally provide a profile photo, notification preferences, and two-factor authentication settings.

2.3 Purchase & Token Data

When you use the TP Tokens buy flow, we collect the email you provide, which challenge you purchased, and your proof of purchase image. We do not collect payment card information, all payments are processed directly by the prop trading firms.

2.4 User Content

Reviews, ratings, vote comments, and contact form submissions are stored and displayed on the Platform.

2.5 Usage Data

We collect anonymized analytics data including page views, button clicks, search queries, and feature usage to improve the Platform. This data is associated with session identifiers, not personal information.

2.6 Newsletter Data

If you opt in to our newsletter (including via the buy flow), we store your email address and the source of your subscription.

3. How We Use Your Data

We use your data to:

  • Provide and maintain your account and the Platform
  • Process TP Token claims and reward redemptions
  • Display your reviews and votes on firm profiles
  • Send transactional emails (purchase verification, reward claims, password resets)
  • Send marketing emails if you opted in (newsletter, deals, updates)
  • Improve the Platform through analytics
  • Prevent fraud and enforce our Terms of Use

4. Data Storage & Security

Your data is stored securely using Supabase (PostgreSQL database hosted on AWS). Authentication is handled by Supabase Auth with industry-standard encryption. Uploaded images (avatars, purchase proofs) are stored in Supabase Storage with access controls.

We use HTTPS encryption for all data in transit. Passwords are hashed and never stored in plain text.

5. Third-Party Services

We use the following third-party services:

  • Supabase — Database, authentication, and file storage
  • Vercel — Website hosting and deployment
  • Upstash — Rate limiting (Redis)
  • Klaviyo — Email marketing and on-site newsletter forms. Loaded only with your consent (marketing cookies)
  • Cloudflare Turnstile — Bot protection on authentication pages (CAPTCHA)
  • Prop Trading Firms — When you click affiliate links, you are redirected to their websites which have their own privacy policies

6. Cookies & Local Storage

When you first visit TradingPilot, a cookie consent banner lets you choose which cookie categories to allow. You can change your preferences at any time via the "Cookie Settings" link in the footer.

6.1 Essential Cookies (always active)

These cookies are required for the site to function and cannot be disabled.

  • Supabase session tokens — Keep you logged in across pages. Set by Supabase Auth. Expire when your session ends or you sign out.
  • Cloudflare Turnstile — Bot-protection challenge cookies on login, signup, and password-reset pages. Set by Cloudflare.
  • localStorage: tp_cookie_consent — Stores your cookie preferences so we don't ask again on every visit.
  • localStorage: tp_pending_purchases — Temporarily stores pending TP Token purchases until you sign in.

6.2 Marketing Cookies (opt-in)

These cookies are only set if you click "Accept All" or enable the Marketing toggle in the cookie banner.

  • Email & promotional features — Used to deliver newsletters, show on-site forms, and measure email campaign effectiveness. These cookies are set by our email marketing provider.

6.3 What We Do Not Use

We do not use third-party advertising cookies, tracking pixels, Google Analytics, Meta Pixel, or any retargeting technologies.

7. Data Sharing

We do not sell, rent, or share your personal data with third parties for marketing purposes. We may share data with:

  • Service providers necessary for Platform operation (Supabase, Vercel)
  • Law enforcement if required by law
  • In aggregate, anonymized form for analytics or research

8. Your Rights

You have the right to:

  • Access your personal data stored on the Platform
  • Update or correct your account information
  • Delete your account and associated data
  • Opt out of marketing emails at any time
  • Request export of your data

To exercise these rights, contact us at tradingpilot.com/contact.

9. Data Retention

Account data is retained for as long as your account is active. Reviews and votes remain on the Platform even after account deletion (displayed as "Anonymous"). Purchase claim data and proof images are retained for 2 years for verification purposes. You may request deletion of your data by contacting us.

10. Children's Privacy

TradingPilot is not intended for users under 18 years of age. We do not knowingly collect data from minors.

11. Changes to This Policy

We may update this Privacy Policy at any time. We will notify users of material changes via email or Platform notification. Continued use of the Platform after changes constitutes acceptance.

12. Contact

For privacy-related questions or requests, contact us at tradingpilot.com/contact.