Privacy Policy

This Privacy Policy describes how ProChart ("ProChart", "we", "us", or "our") collects, uses, stores, shares, and protects personal information in connection with access to and use of the ProChart platform, including all related websites, applications, services, and features (collectively, the "Platform").

By accessing or using the Platform, the user acknowledges that they have read and understood this Privacy Policy.

1. Scope and Applicability

This Privacy Policy applies to all users of the Platform worldwide, including visitors, registered users, and subscribers.

ProChart is committed to protecting user privacy and handling personal data in a transparent, lawful, and secure manner, in accordance with applicable data protection laws, including:

• Israeli Privacy Protection Law
• EU General Data Protection Regulation (GDPR)
• California Consumer Privacy Act (CCPA), where applicable

2. Information We Collect

2.1 Information Provided Directly by the User

We may collect personal information that the user voluntarily provides, including:

• Full name
• Email address
• Account credentials
• Payment and billing details (processed via third-party payment providers)
• User-generated content (analysis prompts, uploaded charts, notes, feedback)
• Support communications and inquiries

2.2 Information Collected Automatically

When the user uses the Platform, we may automatically collect certain information, including:

• IP address
• Device type, operating system, and browser
• Log data, timestamps, and usage activity
• Pages viewed, features used, and interactions
• Cookies and similar tracking technologies

2.3 Third-Party Sources

We may receive limited information from:

• Authentication providers (e.g., Google OAuth)
• Payment processors (Polar.sh)
• Analytics and infrastructure providers

3. Purpose of Data Processing

We use personal information for the following purposes:

• Providing, operating, and maintaining the Platform
• User authentication and account management
• Processing subscriptions, payments, and credits
• Delivering AI-generated analyses and reports
• Improving system performance, security, and usability
• Customer support and communication
• Compliance with legal and regulatory obligations

We do not sell personal data.

4. Legal Basis for Processing (GDPR)

Where applicable, ProChart processes personal data based on one or more of the following legal grounds:

• Performance of a contract (providing the Platform)
• Legitimate business interests (security, analytics, improvement)
• User consent (where required)
• Compliance with legal obligations

5. Artificial Intelligence and Data Usage

ProChart uses artificial intelligence technologies to generate analyses and insights.

• User inputs may be processed by AI models to generate outputs
• Personal data is not intentionally used to train public AI models
• AI processing is performed solely to provide the requested service
• Outputs may be stored for account history and system improvement

ProChart does not guarantee that AI-generated content will be free from errors or inaccuracies.

6. Data Sharing and Disclosure

We may share personal information only in the following circumstances:

• With trusted third-party service providers (hosting, analytics, payments)
• When required by law, regulation, or legal process
• To protect the rights, security, or integrity of ProChart, users, or the public
• In connection with a merger, acquisition, or business transfer

All third parties are required to maintain appropriate data protection and security standards.

7. Data Retention

We retain personal data only for as long as necessary to:

• Provide the Platform
• Comply with legal obligations
• Resolve disputes
• Enforce agreements

Users may request deletion of their account and associated data, subject to legal or contractual retention requirements.

8. Data Security

ProChart implements industry-standard technical and organizational measures to protect personal data, including:

• Secure servers and encrypted communications
• Access controls and authentication mechanisms
• Monitoring and logging of system activity

However, no system is completely secure, and ProChart cannot guarantee absolute data security.

9. Cookies and Tracking Technologies

The Platform uses cookies and similar technologies for:

• Essential cookies — required for sign-in, payments, and core functionality. Always enabled.
• Marketing cookies — used only with the user's explicit consent (see Section 10).

9.1 Meta Pixel

With the user's consent, ProChart uses the Meta Pixel (a marketing technology operated by Meta Platforms, Inc.) on its public-facing pages to measure the effectiveness of advertising campaigns and to build retargeting audiences. The Pixel ID used by ProChart is 931166533062151.

What data is shared with Meta:

• Generic event names from a fixed taxonomy (e.g., PageView, ViewContent, Lead, InitiateCheckout, Purchase, AnalysisStarted)
• Coarse browser and page metadata (page path, language)
• Standard Meta browser identifiers (_fbp, _fbc cookies set by Meta)
• Marketing attribution parameters from the URL (utm_source, utm_campaign, fbclid presence) when available

What is NOT shared with Meta:

• Email addresses, names, phone numbers, or any direct identifiers
• Internal user IDs, Supabase user IDs, or Paddle customer/subscription IDs
• Authentication tokens of any kind
• Trading symbols, asset tickers, or any specific financial holdings of an individual
• The content of analysis prompts, chat messages, AI responses, or generated reports
• Any free-form text typed by the user

Numeric values (e.g., credit balances) are bucketed into broad ranges before transmission to reduce fingerprinting. An allowlist mechanism enforces that only the parameters listed above are ever sent.

ProChart also signals Meta to apply Limited Data Use (LDU) in geo-detection mode for users that Meta identifies as residents of California, in line with the California Consumer Privacy Act (CCPA).

Meta's processing of this data is governed by Meta's own privacy policy: https://www.facebook.com/privacy/policy. Users may opt out of Meta's tracking directly via https://www.facebook.com/help/568137493302217.

9.2 Your Choices

Marketing cookies are never enabled without explicit consent. Users see a cookie consent banner on first visit and may choose to accept or decline marketing tracking. The choice can be changed at any time via:

• The Cookie Preferences link in the footer of any page
• Settings → Privacy & Tracking for signed-in users

Important — disabling marketing tracking: Disabling marketing tracking via either of the controls above stops future Meta Pixel events. However, this does not remove cookies already set by Meta or Facebook in the user's browser. To remove existing Meta cookies, the user can clear browser cookies for facebook.com or use Meta-direct/browser-level privacy controls.

Users may also control or disable cookies through standard browser settings. Disabling essential cookies may affect Platform functionality.

10. Your Choices and Cookie Preferences

ProChart is committed to giving the user full control over marketing tracking:

• First visit: a cookie consent banner appears at the bottom of the screen offering "Accept All", "Decline All", and "Customize" options.
• Anytime change: the "Cookie Preferences" link in the footer of every page reopens the same dialog.
• Settings page: signed-in users can toggle marketing tracking on/off in Settings → Privacy & Tracking.
• Direct opt-out: users can opt out of Meta's tracking platform-wide at https://www.facebook.com/help/568137493302217.
• Browser controls: standard browser cookie/tracking controls (e.g., third-party-cookie blocking, tracking-protection mode) also apply.

No marketing tracking takes place until the user has explicitly accepted via the banner, customize dialog, or Settings toggle. Disabling marketing tracking does not affect access to the Platform or core functionality.

11. User Rights

Depending on jurisdiction, the user may have the right to:

• Access personal data
• Correct inaccurate data
• Request deletion of data
• Restrict or object to processing
• Data portability
• Withdraw consent (where applicable)

Requests may be submitted via the contact details below. Identity verification may be required.

12. International Data Transfers

Information may be processed and stored on servers located outside the user's country of residence.

ProChart ensures that appropriate safeguards are in place for international data transfers, in accordance with applicable data protection laws.

13. Children's Privacy

The Platform is not intended for use by individuals under the age of 18.

ProChart does not knowingly collect personal data from minors.

14. Changes to This Privacy Policy

ProChart may update this Privacy Policy from time to time.

Material changes will be communicated through the Platform or by other appropriate means.

Continued use of the Platform after changes constitutes acceptance of the updated Privacy Policy.

15. Contact

For questions or requests regarding this Privacy Policy:

• Via Support System: Settings → Support → Open Ticket
• Email: support@prochart.io
• Address: ProChart Ltd., Tel Aviv–Yafo, Israel