Privacy Policy & Cookies
Last updated:
1. Introduction
Alpha Signal ("we", "us", "our") is committed to protecting your personal data. This Privacy Policy explains what information we collect, how we use it and what rights you have, in accordance with the EU General Data Protection Regulation (GDPR, Regulation (EU) 2016/679) and the UK Data Protection Act 2018.
2. Data Controller
The controller responsible for the processing of your personal data is Alpha Signal. You can contact us at privacy@alphasignal.io for any privacy-related matter.
3. Data We Collect
We only process data that you voluntarily provide or that is strictly necessary to operate the Site. Specifically:
- Contact and profile data you submit through our forms: first name, last name, email address, phone number and trading-experience level.
- Technical data: IP address (anonymised), browser type, device type, referring URL and general interaction patterns.
- Communication preferences: consent records, subscription status, unsubscribes.
4. Legal Basis for Processing
- Consent — for marketing emails, non-essential cookies and partner-broker introductions.
- Contract — to deliver the educational content, reports or accounts you requested.
- Legitimate interest — to operate, secure and improve the Site, and to prevent abuse.
- Legal obligation — to comply with applicable laws and regulatory requests.
5. Purposes of Processing
- Delivering the free reports, content and services you have requested.
- Communicating with you about your enquiries and subscriptions.
- Matching qualifying users to regulated broker partners when you have consented.
- Analytics, performance monitoring and fraud prevention.
- Meeting legal, regulatory and accounting obligations.
6. Sharing Your Data
We do not sell your data. We share it only with:
- Service providers (email delivery, analytics, hosting, CRM) bound by confidentiality and data-processing agreements.
- Regulated broker partners — only where you have explicitly consented, for example by selecting partner-matching on a form.
- Authorities — where required by law, court order or regulator.
7. International Transfers
Where data is transferred outside the European Economic Area, we rely on safeguards recognised by the GDPR, including the European Commission's Standard Contractual Clauses and, where relevant, adequacy decisions.
8. Retention
We retain personal data only for as long as necessary for the purposes described above, or as required by law. Marketing records are kept while your consent is active and for a short reconciliation period afterwards. Technical logs are rotated on short cycles.
9. Your Rights
Under the GDPR you have the right to:
- Access the personal data we hold about you;
- Rectify inaccurate or incomplete data;
- Erasure ("right to be forgotten");
- Restrict or object to certain processing;
- Data portability;
- Withdraw consent at any time, without affecting the lawfulness of processing carried out before withdrawal;
- Lodge a complaint with a supervisory authority.
To exercise any of these rights, contact privacy@alphasignal.io. We respond to legitimate requests within 30 days.
10. Cookies
A cookie is a small text file placed on your device to make a website work, or to gather information about how it is used. We use the following cookie categories:
| Category | Purpose | Consent |
|---|---|---|
| Essential | Required for site functionality: session handling, security, form submission, cookie-consent record. | Always active |
| Analytics | Aggregated, anonymised traffic analysis (e.g. Google Analytics with IP anonymisation). | On consent |
| Marketing | Used to measure campaign performance and, where you have consented, to show relevant content across partner platforms. | On consent |
You can withdraw cookie consent at any time by clicking "Decline" in the banner, clearing cookies in your browser, or adjusting your browser's settings. Blocking essential cookies may break core functionality.
11. Security
We implement appropriate technical and organisational measures to protect your data, including SSL/TLS encryption in transit, role-based access controls, regular security audits and monitoring for suspicious activity. No system can be guaranteed perfectly secure, and we cannot assume liability beyond the standards set by applicable law.
12. Children
The Site is directed at adults only. We do not knowingly collect personal data from anyone under the age of 18. If you believe a minor has provided us with data, please contact us so we can delete it.
13. Changes to This Policy
We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the latest version. Material changes will be highlighted where appropriate.
14. Contact
Email: privacy@alphasignal.io