Legal

Privacy Policy

Last updated: April 6, 2026

1. Who We Are

Tempera ("we", "us", "our") is a trading analytics and behavioral coaching platform operated by Prepaze Inc. Our registered email for privacy matters is privacy@thetempera.com. Tempera is not a broker, investment adviser, or financial institution. We do not hold, manage, or custody any funds or securities.

2. What Data We Collect

Account data — your email address, which we collect when you sign up via Supabase Auth. We do not store passwords — authentication is handled by Supabase.

Trade data — CSV files you upload containing your order history. This data is processed to generate behavioral analysis and is stored in our database linked to your user ID. We never share your trade data with third parties.

Usage data — standard server logs including IP address, browser type, and pages visited. We use this only for security and performance monitoring.

Device tokens — if you use the mobile app and opt in to push notifications, we store your Expo push token to deliver discipline rule reminders. You can revoke this at any time by disabling notifications in your device settings.

Payment data — we use Stripe to process payments. When you pay, your card details are entered directly into Stripe's secure form and go straight to Stripe — they never pass through our servers. We store only your Stripe customer ID and subscription status, not your card number, CVC, or expiry.

3. How We Use Your Data

  • To generate AI behavioral analysis reports from your uploaded trade data
  • To send push notifications for your discipline rules (if enabled)
  • To manage your subscription and billing via Stripe
  • To send product update emails (you can unsubscribe at any time)
  • To improve our AI models and pattern detection (anonymised, aggregated only)

We do not sell your data. We do not use your trade data for advertising purposes. We do not share your individual trade data with any third party.

4. Data Storage and Security

Your data is stored in Supabase (PostgreSQL) hosted on AWS infrastructure in the United States. We use Row-Level Security (RLS) policies to ensure you can only access your own data.

We use TLS/SSL encryption for all data in transit. We apply industry-standard security practices, including regular backups, access controls, and monitoring. However, no system is 100% secure and we cannot guarantee absolute security.

5. Data Retention

We retain your account and trade data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it by law (e.g. for financial record-keeping purposes).

6. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data ("right to be forgotten")
  • Export your data in a portable format
  • Opt out of marketing emails at any time

To exercise any of these rights, email privacy@thetempera.com. We will respond within 30 days.

7. Cookies

We use only essential cookies necessary for authentication (Supabase session cookies). We do not use advertising cookies or third-party tracking cookies.

8. Third-Party Services

We use the following third-party services, each with their own privacy policies:

  • Supabase — database and authentication (supabase.com/privacy)
  • Stripe — payment processing (stripe.com/privacy)
  • Anthropic (Claude) — AI analysis (anthropic.com/privacy) — only anonymised trade summaries are sent, never your account details
  • Expo — push notification delivery for mobile (expo.dev/privacy)
  • Render / Vercel — hosting infrastructure

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or a banner in the app. Continued use of Tempera after changes are posted constitutes your acceptance of the updated policy.

10. Contact

Questions about this policy? Email us at privacy@thetempera.com.