Privacy Policy

1. Who We Are and Contact Information

The Service is operated by Haidar Lionel Haj Ali, trading as Trade't, a sole proprietor business with operational addresses in Saône, France and Hazmieh, Lebanon. Trade't OÜ (an Estonian private limited company) is being incorporated and will assume these obligations upon completion. For privacy questions or requests, please contact us at support@tradet.net. Where applicable, Trade't is the data controller for the information collected via the Service.

2. Information We Collect

We collect information necessary to provide and improve the Service, grouped as follows:

• Account & Organization Data – Name, email address, organization name, role, login credentials (hashed), address, VAT ID when applicable, and preferences you provide when registering or using the Service.
• Usage & Licensing Data – Information about the programs and licenses you create, license verification requests ("API hits"), timestamps and status. We measure usage metrics (e.g., number of active licenses, programs or API calls) for subscription management and overage billing.
• Content You Provide – Optional uploads such as compiled binaries or artifacts to facilitate delivery.
• Technical Data – IP address, browser type, device type, operating system, request headers and basic diagnostic logs. We also collect information about how you interact with the Service (e.g., clickstream data).
• Billing & Payments – We do not store credit‑card numbers or payment methods. Payments are processed by Paddle, our merchant of record. We collect transaction references, invoice metadata and usage quantities (e.g., overage counts) needed to generate invoices and reconcile payments.
• Communications – The content of your messages when you contact us, plus our replies (e.g., support requests, feedback).
• Cookies & Similar Technologies – See Section 11 below.

3. How We Use Your Information

We process personal data for the following purposes and legal bases:

• Provide and Operate the Service – To authenticate users, manage accounts, enforce license checks, monitor usage metrics, and maintain service functionality (legal basis: contract performance).
• Billing and Payments – To calculate subscription fees and usage‑based overages, issue invoices and process payments through Paddle and other processors (legal basis: contract performance and legitimate interests). Your contact and transaction details are shared with Paddle for tax compliance, payment processing, fraud prevention, refunds and chargebacks.
• Communications – To send transactional notices, service updates, and (with consent) marketing messages or product announcements. You may opt out of marketing communications at any time (legal basis: contract performance and consent).
• Security and Fraud Prevention – To detect, prevent and investigate abuse, fraud or violations of our Terms (legal basis: legitimate interests).
• Service Improvement – To analyze usage trends, debug issues, develop new features and improve performance (legal basis: legitimate interests).
• Compliance with Law – To comply with applicable legal requirements, tax regulations and court orders (legal basis: legal obligation).

4. Legal Bases for Processing

Where the General Data Protection Regulation (GDPR) or similar laws apply, we rely on one or more of the following legal bases to process personal data:

• Contract – Processing is necessary to perform our contract with you (e.g., account management, licensing, billing).
• Legitimate Interests – Processing is necessary for our legitimate interests in operating and improving the Service, securing it against misuse and ensuring fair billing, balanced against your rights and freedoms.
• Consent – We obtain your consent for optional communications, marketing or analytics cookies. You may withdraw consent at any time.
• Legal Obligation – Processing is necessary to comply with legal requirements, tax rules and court orders.

5. Sharing and Disclosures

We do not sell your personal data. We may share limited information with:

• Payment Processors – Paddle acts as our merchant of record and processes payments, VAT/tax calculations, refunds and chargebacks. These processors receive necessary transaction and contact details to process your orders. Paddle's privacy practices are governed by its own policies.
• Infrastructure & Hosting – Nhost and other cloud providers host our databases, storage and authentication systems.
• Email and Communications Providers – Services that send transactional emails, support replies, and marketing messages on our behalf.
• Professional Service Providers – Legal, accounting, security and compliance advisors under confidentiality obligations.
• Compliance & Law Enforcement – Public authorities or court bodies when required by law or to protect our rights, users or the Service.
• Business Transfers – If we undergo a merger, acquisition or asset sale, data may transfer to the acquiring entity subject to appropriate safeguards.

We require third parties to protect your information and comply with applicable data protection laws.

6. International Transfers

We operate globally and may process data in countries other than your own. When we transfer personal data across borders, we use appropriate safeguards such as contractual clauses or reliance on adequacy decisions where applicable, consistent with data protection laws.

7. Data Retention

We retain personal data only as long as necessary:

• Active Accounts – We keep account, usage and operational data for the duration of your subscription.
• After Termination – We retain data for up to 12 months for potential reactivation, audits and legal compliance. Transaction records may be kept longer if required by law.
• Backups & Logs – Short‑lived backups and logs may persist briefly beyond deletion for integrity, security and recovery.

8. Your Rights

Depending on your jurisdiction, you may have the right to:

• Access – Request a copy of your personal data that we hold.
• Rectification – Correct inaccurate or incomplete data.
• Erasure – Request deletion of personal data where no longer necessary (subject to legal exceptions).
• Restriction – Request restriction of processing in certain circumstances.
• Portability – Obtain a copy of your data in a structured, machine‑readable format.
• Objection – Object to processing based on legitimate interests.
• Withdraw Consent – Withdraw consent to optional processing at any time, without affecting the lawfulness of processing prior to withdrawal.

To exercise your rights, please contact us at support@tradet.net. We may need to verify your identity before processing your request.

9. Security

We implement technical and organizational measures to protect personal data, such as HTTPS encryption, database encryption at rest, access controls, and hashed passwords. No system is completely secure; you are responsible for safeguarding your credentials and using a strong password.

10. Cookies and Similar Technologies

We use essential cookies to enable authentication, maintain sessions and provide core functionality. These cannot be disabled without affecting your use of the Service.

We may also use optional analytics cookies or third‑party tools to understand usage patterns and improve the Service. Where required, we will request your consent before setting analytics cookies. You can manage cookies through your browser settings.

When you proceed to checkout, Paddle's checkout may place its own cookies or tracking technologies to prevent fraud and manage the payment process. These cookies are controlled by Paddle and governed by its privacy policy.

11. Children's Privacy

The Service is intended for users aged 18 or older. We do not knowingly collect personal data from minors. If you believe a minor has provided us with personal data, contact support@tradet.net and we will delete it.

12. Third‑Party Links and Services

The Service may link to or integrate with third‑party websites or services. We are not responsible for their privacy practices. Please review the privacy policies of those third parties before providing any personal data.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated version with a new "Last Updated" date and, if changes are material, notify you via email or in‑product notice. Continued use of the Service after changes take effect constitutes your acceptance of the updated Policy.

14. Governing Law and Venue

This Policy is governed by the laws of the Republic of France. Any disputes arising from or relating to this Policy are subject to the exclusive jurisdiction of the competent courts in France. Upon formation of Trade't OÜ (an Estonian Limited Liability Company) these terms will be governed by the laws of The Republic of Estonia.

15. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at support@tradet.net.