Privacy Policy

Your privacy matters. This policy explains how we collect, use, and protect your information.

Last Updated: December 2024

ScamDunk ("we," "our," or "us") is committed to protecting your privacy. This policy explains how we collect, use, disclose, and safeguard your information when you use our stock analysis service.

Information We Collect

Account Information

Email address, name (optional), encrypted password, and account creation date.

Usage Information

Stock tickers searched, pitch text submitted (optional), scan results, timestamps, and monthly usage counts.

Payment Information

Stripe customer ID and subscription status. We do NOT store credit card numbers—all payment processing is handled by Stripe.

Technical Information

IP address, browser type, device information, and session cookies for authentication.

How We Use Your Information

  • Provide our service and deliver scan results
  • Manage your account and track usage
  • Process payments through Stripe
  • Maintain your scan history
  • Improve our service and features
  • Prevent fraud and abuse

How We Share Information

Service Providers

We share data with trusted partners: Stripe (payments), OpenAI (AI analysis), Alpha Vantage (market data), and hosting providers.

We Do NOT:

  • • Sell your personal information
  • • Share data with advertisers
  • • Use scan history for marketing

Data Security

  • Encryption in transit (HTTPS/TLS)
  • Encrypted database storage
  • Passwords hashed with bcrypt
  • Secure session management

No method is 100% secure. We cannot guarantee absolute security.

Data Retention

  • Account data: Until you delete your account
  • Scan history: 12 months
  • Usage logs: 90 days
  • Payment records: As required by law (typically 7 years)

Your Privacy Rights

All Users Can:

  • • Access and download your data
  • • Correct inaccurate information
  • • Delete your account and data
  • • Withdraw consent

California Residents (CCPA)

Additional rights to know what data we collect, opt out of sales (we don't sell data), and non-discrimination for exercising privacy rights.

EU/EEA Residents (GDPR)

Additional rights to data portability, restrict processing, object to processing, and lodge complaints with supervisory authorities.

Cookies

We use essential cookies for authentication and session management.

We do NOT use advertising cookies or third-party tracking.

Children's Privacy

ScamDunk is not intended for users under 18. We do not knowingly collect data from children.

Policy Changes

We may update this policy. We'll notify you of material changes by posting the new policy and updating the date. For significant changes, we may also send email notification.

Contact & Data Requests

To exercise privacy rights or ask questions:

Email: privacy@scamdunk.com

We respond to verified requests within 30 days.

Terms of ServiceDisclaimer