Privacy Policy

Last updated: October 14, 2025

1. Introduction

This Privacy Policy explains how TraderSign Sdn. Bhd. (202501012050) ("TraderSign", "we", "us", or "our") collects, uses, discloses, stores, and protects personal data when you access or use the TraderSign website, web application, APIs, integrations, and related services (collectively, the "Platform").

We are committed to handling personal data in accordance with the Malaysian Personal Data Protection Act 2010 ("PDPA"), as amended from time to time, and other applicable data protection laws where relevant.

By accessing or using the Platform, you acknowledge that we may collect, use, disclose, store, and process your personal data as described in this Privacy Policy, where permitted by applicable law. If you do not agree, please do not use the Platform.

2. Personal Data We Collect

We may collect the following categories of personal data depending on how you use the Platform:

  • Account Information: name, email address, password or authentication credentials, time zone, preferences, profile details, and other information you provide when creating or managing an account.
  • Billing Information: billing name, billing address, tax-related information, subscription details, transaction history, partial payment card details, and payment processor identifiers. Full card details are handled by our payment processors.
  • Trading Journal Data: trade entries, instruments, markets, quantities, prices, P&L, fees, screenshots, notes, tags, trading plans, reports, and other information you log, upload, import, or generate through the Platform.
  • Broker and Trading Account Connection Data: broker or platform account identifiers, server details, account numbers, connection metadata, access tokens or credentials where required for a feature, sync status, imported trade history, and related integration data when you choose to connect a broker, trading platform, or third-party service.
  • Uploaded Files and Media: screenshots, CSV files, broker statements, import files, images, attachments, and other files you upload or attach to your account, notes, trades, or imports.
  • Usage & Device Data: IP address, browser type, device information, operating system, pages viewed, actions performed, feature usage, login timestamps, error logs, and similar analytics or diagnostic data.
  • Support & Communication Data: emails, support tickets, chat messages, feedback, survey responses, and other information you provide when communicating with us.

We may collect personal data directly from you, automatically through the Platform, or from integrations and third-party services that you choose to connect to TraderSign.

3. How We Use Your Personal Data

We use personal data for the following purposes, to the extent permitted by applicable law:

  • To provide and operate the Platform: create and manage accounts, authenticate users, display trading data, process imports, sync connected integrations, generate reports, and deliver requested features.
  • To process payments and manage subscriptions: process payments through third-party payment processors such as Stripe, manage invoices, handle renewals, send billing notices, and maintain subscription records.
  • To communicate with you: send account notices, billing notifications, security alerts, service updates, onboarding emails, transactional emails, and responses to support requests.
  • To improve and develop TraderSign: analyze usage trends, troubleshoot bugs, monitor performance, test features, improve security, and enhance the user experience.
  • To protect the Platform and enforce our terms: detect and prevent fraud, abuse, unauthorized access, security incidents, chargebacks, policy violations, or misuse of the Platform.
  • To comply with legal obligations: respond to lawful requests, comply with tax, accounting, regulatory, and record-keeping obligations, and exercise or defend legal claims.

You are responsible for ensuring that the account, billing, and contact information you provide is accurate and up to date. You may update certain account details within the Platform or contact us to request correction.

4. Cookies & Tracking Technologies

We may use cookies, local storage, pixels, and similar technologies to:

  • keep you logged in and maintain your session;
  • remember preferences such as time zone, layout, or theme;
  • measure and analyze Platform usage and performance;
  • detect security issues, abuse, or suspicious activity; and
  • improve Platform functionality and reliability.

You can control or delete cookies through your browser settings. Disabling certain cookies may affect the proper functioning of the Platform.

5. Legal Basis & Consent

We process personal data where it is necessary or permitted for one or more lawful purposes, including:

  • to perform our contract with you or take steps at your request before entering into a contract;
  • to comply with legal, regulatory, tax, accounting, or security obligations;
  • to operate, maintain, secure, and improve the Platform;
  • to protect our rights, users, systems, and legitimate business interests; or
  • where you have given consent and consent is required by applicable law.

Where we rely on consent, you may withdraw your consent by contacting us, subject to legal, contractual, or technical restrictions and reasonable notice. Withdrawal of consent may affect your ability to use certain Platform features.

6. How We Share Your Personal Data

We do not sell your trading journal data, broker connection data, or personal data. We may share personal data with the following categories of recipients only where reasonably necessary and subject to appropriate safeguards:

  • Service providers: vendors that help us operate the Platform, such as hosting providers, cloud storage providers, payment processors, email delivery providers, analytics providers, customer support tools, monitoring tools, and security providers.
  • Connected integrations: brokers, trading platforms, data providers, or third-party services that you choose to connect, where sharing is necessary to provide the requested integration or sync feature.
  • Professional advisors: lawyers, auditors, accountants, insurers, or other advisors where necessary for legitimate business, compliance, or legal purposes.
  • Authorities & law enforcement: regulators, courts, law enforcement, tax authorities, or government bodies where required by law or where necessary to protect our rights, users, systems, or the public.
  • Corporate transactions: parties involved in a merger, acquisition, financing, reorganization, asset sale, or similar transaction, subject to appropriate confidentiality or data protection measures.

7. Cross-Border Transfers

Your personal data may be transferred to, stored in, or processed in Malaysia or other countries where we or our service providers operate. These countries may have data protection laws that differ from those in your country.

Where required by applicable law, we take reasonable steps to ensure that cross-border transfers are protected by appropriate safeguards, contractual arrangements, or other lawful transfer mechanisms.

8. Data Retention

We retain personal data for as long as reasonably necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

  • Account and subscription data are generally retained while your account is active and for a reasonable period afterward for legal, tax, billing, security, and dispute-resolution purposes.
  • Trading journal data is generally retained while your account is active, unless you delete it or request deletion, subject to backups, legal retention, fraud prevention, dispute handling, and technical limits.
  • Uploaded import files, screenshots, media, and attachments may be retained according to Platform settings, product retention rules, backup cycles, or legal requirements.
  • Billing records, invoices, payment processor identifiers, and tax-related records may be retained for the period required or permitted under applicable accounting, tax, and legal obligations.
  • Security logs, audit logs, and technical logs may be retained for a reasonable period to protect the Platform, investigate incidents, and prevent abuse.

When personal data is no longer required, we will take reasonable steps to delete, anonymize, or securely retain it only where permitted by law.

9. Security

We use reasonable administrative, technical, and organizational measures designed to protect personal data against loss, misuse, unauthorized access, disclosure, alteration, or destruction.

  • access controls and authentication measures;
  • encryption or secure transmission where appropriate;
  • segregation of access based on business need;
  • monitoring, logging, and security review processes; and
  • vendor safeguards for third-party service providers.

No method of transmission or storage is completely secure. You are responsible for protecting your account credentials, devices, email account, and any third-party accounts connected to TraderSign.

If we become aware of a data security incident affecting personal data, we will take reasonable steps to assess, contain, and address the incident, and notify affected users or authorities where required by applicable law.

10. Your Rights

Subject to applicable law, you may have rights in relation to your personal data, including the right to:

  • request access to personal data we hold about you;
  • request correction of inaccurate, incomplete, or outdated personal data;
  • request deletion of certain personal data, subject to legal or legitimate retention requirements;
  • withdraw consent where processing is based on consent;
  • object to or limit certain processing where applicable; and
  • request data portability where required by applicable law and technically feasible.

To exercise your rights, contact us at support@tradersign.com. We may need to verify your identity before fulfilling your request, and some requests may be limited by law, security, fraud prevention, backup retention, or our need to maintain legitimate business records.

11. Third-Party Links & Integrations

The Platform may include links to third-party websites or allow you to connect third-party services such as brokers, trading platforms, data providers, payment processors, storage providers, support tools, or other integrations.

Third-party services are governed by their own terms and privacy policies. TraderSign is not responsible for the privacy practices, content, security, availability, or data handling of third-party services that we do not control.

12. Children's Privacy

The Platform is not intended for individuals under 18 years old. We do not knowingly collect personal data from individuals under 18. If we become aware that we have collected personal data from an individual under 18, we will take reasonable steps to delete such data, unless retention is required or permitted by law.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will provide reasonable notice where required or appropriate, such as by email, in-app notice, or posting an updated version on the Platform.

Your continued use of the Platform after the effective date of the updated Privacy Policy means you acknowledge the updated Policy. If you do not agree, you should stop using the Platform and, where applicable, close your account.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our handling of personal data, please contact us:

TraderSign Sdn. Bhd. (202501012050)
Email: support@tradersign.com