Privacy Policy

Last Updated: February 15, 2026

Stedrok respects your privacy. This policy explains what data we collect, how we use it, and your rights.

Data Controller

Stedrok Pty Ltd is the data controller responsible for your personal data.

Contact: contact@stedrok.org · [Your Mailing Address], Sydney, NSW, Australia

1. Information We Collect

1.1 Information You Provide

Account Registration:

  • Email address (required)
  • Password (hashed — never stored in plaintext)

Payment Information:

  • PayPal transaction ID and subscription status
  • We never store your credit card numbers — PayPal handles this securely

1.2 Information We Collect Automatically

  • IP address (for security and abuse prevention)
  • Browser type, device info, pages visited
  • Session cookies (required to keep you logged in)

1.3 Information We Don't Collect

  • We do NOT store your PayPal credentials or card numbers
  • We do NOT sell your data to third parties
  • We do NOT share your email with marketers
  • We do NOT collect biometric, location, or health data

2. How We Use Your Information

  • Create and maintain your account
  • Process subscriptions and payments via PayPal
  • Deliver stock screener data
  • Send password reset emails and billing updates
  • Detect and prevent fraud or abuse
  • Improve the service based on usage patterns

3. Third-Party Services

We share minimal data with:

  • PayPal: Payment processing
  • Supabase: Database and authentication
  • Cloudflare: API hosting and DDoS protection
  • GitHub Pages: Static website hosting

We do not share data with advertising networks, data brokers, or email marketers.

4. Data Retention

Active accounts: Data retained while your account is active.

Deleted accounts: Personal data removed within 30 days. Transaction records kept for 7 years (tax/audit).

5. Your Rights

  • Access: Request a copy of your data — email contact@stedrok.org
  • Correction: Update email/password in Account Settings
  • Deletion: Account Settings → Danger Zone → Delete Account
  • Opt-out: Unsubscribe link in all promotional emails

6. Cookies & Analytics

Essential Cookies: Stedrok uses session cookies to keep you logged in. These are required for the dashboard to function.

Analytics: We do not currently use third-party analytics trackers. If we add privacy-friendly analytics in the future (e.g., Plausible), we will update this section and notify users.

Your Choices: You can disable cookies in your browser settings, but this will prevent you from logging in. To delete existing cookies, clear your browser's site data for stedrok.org.

7. Data Security

All data uses HTTPS/TLS encryption. Passwords are hashed. Supabase is SOC 2 Type II certified. No system is 100% secure — we are not liable for breaches beyond our control.

8. Children's Privacy

Stedrok is not intended for users under 18. We do not knowingly collect data from children.

9. Changes to This Policy

Material changes will be communicated via email. Continued use constitutes acceptance.

10. Contact Us

Questions about privacy? Email contact@stedrok.org with "Privacy" in the subject line.

We take your privacy seriously. Thank you for trusting us.