1. Information we collect
Account information. If you create an account, we collect your email address, password hash, email verification status, account ID, authentication provider metadata, and session tokens. If you use Sign in with Apple, we may receive your Apple user identifier, email address, and name if Apple provides it.
App activity and preferences. We collect information you create or choose in Arbdeck, such as follows, watchlist items, bookmarks, likes, shared article actions, portfolio holdings you enter, notification preferences, market scope, quiet hours, locale, timezone, and feature settings.
News and analysis requests. When you request feeds, company snapshots, "So What?" analysis, Pulse, trending intelligence, For You, shared links, or similar features, we process the article IDs, headlines, summaries, categories, tickers, source URLs, request time, and related context needed to provide the feature.
Subscription information. If you subscribe through the App Store, Apple processes your payment. We may receive or generate subscription entitlement information, app account tokens, StoreKit transaction data, product identifiers, expiry dates, and status information needed to activate paid features and prevent abuse.
Notifications and widgets. If you enable notifications or widgets, we collect APNs device tokens, widget push tokens, installation identifiers and secrets, notification authorization status, notification preferences, delivery records, notification open events, and destination-loaded events.
Device, security, and log data. We collect technical information such as IP address, request headers, timestamps, app version, platform, device integrity or App Attest signals, DeviceCheck tokens, rate-limit events, error logs, and security events. We use this information to operate, secure, debug, and protect Arbdeck.
Website information. When you visit arbdeck.com, our hosting and security providers may process standard web request data such as IP address, browser type, referring URL, pages requested, and timestamps. The public legal and landing pages do not require an Arbdeck account.
Support communications. If you contact us, we collect the information you include in your message and our responses.
2. How we use information
We use information to:
- Provide, maintain, personalize, and improve Arbdeck.
- Create and manage accounts, sessions, email verification, and account deletion.
- Deliver financial news feeds, summaries, company snapshots, alerts, shared links, widgets, and analysis features.
- Personalize feeds and notifications using follows, likes, bookmarks, shares, portfolio holdings, and market preferences.
- Process and verify subscriptions and paid feature access.
- Send service emails, verification emails, support replies, and push notifications you enable.
- Detect, prevent, and respond to fraud, abuse, scraping, automated misuse, security incidents, and policy violations.
- Debug errors, measure service reliability, enforce rate limits, and comply with legal obligations.
3. AI and automated processing
Arbdeck uses automated systems and AI model providers to summarize news, classify articles, identify market relevance, generate analysis, and support market intelligence features. Inputs may include article headlines, article text or excerpts, summaries, tickers, categories, source metadata, and non-sensitive request context.
We do not intentionally send your password, full payment details, or account email to AI model providers for ordinary news summarization and analysis. Automated outputs can be inaccurate, incomplete, or outdated and should not be treated as investment advice.
4. How we share information
We share information only as needed for the purposes described in this Policy, including with:
- Service providers that host infrastructure, databases, APIs, caching, email delivery, security, monitoring, AI processing, and similar operations.
- Apple for Sign in with Apple, StoreKit purchases, App Store subscriptions, APNs push notifications, App Attest, DeviceCheck, and app platform services.
- News, market data, image, logo, and content providers when needed to fetch articles, market data, company information, images, publisher pages, or related content.
- Other users or recipients when you share an Arbdeck article link. Shared links may expose article metadata such as headline, source, summary, image, and URL.
- Legal, safety, and business recipients if required by law, to protect rights and safety, enforce our terms, respond to legal process, or evaluate a merger, acquisition, financing, or asset transfer.
We do not sell your personal information. We also do not share personal information for cross-context behavioral advertising as that term is commonly used in U.S. state privacy laws.
5. Your choices
Account. You can sign out or delete your account in the app where available. You can also contact us at hello@arbdeck.com.
Notifications. You can enable, disable, or change notification preferences in the app and in iOS Settings. Disabling notifications may not delete historical delivery or security records immediately.
Subscriptions. App Store subscriptions are managed through your Apple account settings. Apple handles cancellation and refund requests for App Store purchases.
Local data. The app may store sessions, cached articles, settings, and device identifiers on your device using Keychain, UserDefaults, app storage, widgets, and local caches. You can remove local app data by using app controls where available, signing out, deleting your account, or uninstalling the app.
Privacy requests. Depending on where you live, you may have rights to request access, deletion, correction, portability, restriction, or objection. You may make requests at hello@arbdeck.com. We may need to verify your identity before acting on a request.
6. Retention
We keep information for as long as needed to provide Arbdeck, maintain security, comply with law, resolve disputes, and enforce agreements.
Some records have shorter retention by design. For example, email verification tokens are intended to expire after about 24 hours, refresh tokens after about 30 days unless rotated or revoked, and public shared-article lookup records after about 30 days.
If you delete your account, we delete or disassociate core account records and related personalization data where feasible. We may retain limited records where necessary for security, fraud prevention, legal compliance, subscription records, backups, logs, dispute resolution, or legitimate business operations.
7. Security
We use technical and organizational measures designed to protect information, including encrypted transport, hashed passwords, token-based authentication, Keychain storage on device, device integrity checks for sensitive actions, access controls, and abuse prevention. No method of transmission or storage is perfectly secure, so we cannot guarantee absolute security.
8. International processing
Arbdeck and our service providers may process and store information in the United States and other countries. Those countries may have data protection laws different from the laws where you live.
9. Children
Arbdeck is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided personal information to Arbdeck, contact us and we will take appropriate steps.
10. Third-party links and content
Arbdeck links to third-party publisher pages, market data sources, images, company sites, and other external services. This Privacy Policy does not cover third-party websites, apps, or services. Review their privacy policies before using them.
11. Changes to this Policy
We may update this Privacy Policy from time to time. If changes are material, we will take reasonable steps to notify you, such as by posting the updated Policy, updating the "Last updated" date, or providing in-app notice. Continued use after changes become effective means you acknowledge the updated Policy.
12. Contact
Questions or privacy requests can be sent to hello@arbdeck.com.