Privacy Policy

Last Updated: January 2025

            TL;DR: We collect minimal data (email, API usage), use it only to provide our service, never sell it, and you can delete your data anytime. We use industry-standard security and comply with GDPR.
        

1. Introduction

Welcome to VERDIX ("we," "our," or "us"). We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our dividend stock API service and related services (the "Service").

2. Information We Collect

2.1 Information You Provide

Email Address: Required to create and manage your API account
Payment Information: Processed securely through Stripe (we don't store credit card details)
Name and Business Details: Optional, for Enterprise customers

2.2 Automatically Collected Information

API Usage Data: Request timestamps, endpoints accessed, response times
IP Addresses: For rate limiting and fraud prevention
Device Information: Browser type, operating system (through standard HTTP headers)
Cookies: Essential cookies for authentication and session management

2.3 Information We DO NOT Collect

We do NOT track your browsing activity outside our service
We do NOT sell or share your data with third parties for marketing
We do NOT use intrusive analytics or advertising trackers

3. How We Use Your Information

We use your information solely to:

Provide the Service: Process API requests, manage your account
Billing: Process payments and send invoices
Communication: Send API keys, service updates, and support responses
Security: Prevent fraud, abuse, and unauthorized access
Improvement: Analyze usage patterns to improve our API (anonymized data only)
Compliance: Meet legal obligations and enforce our Terms of Service

4. Data Sharing and Disclosure

4.1 Service Providers

We share limited data with trusted third-party services:

Stripe: Payment processing (see Stripe Privacy Policy)
SendGrid/Email Provider: Sending API keys and notifications
Hosting Provider: Namecheap/VPS for infrastructure

4.2 Legal Requirements

We may disclose your information if required by law, court order, or to:

Comply with legal processes
Protect our rights, property, or safety
Prevent fraud or abuse

4.3 Business Transfers

If VERDIX is acquired or merged, your data may be transferred to the new owner, who must honor this Privacy Policy.

5. Data Retention

Active Accounts: We retain your data while your account is active.

After Account Deletion:

Personal information deleted within 30 days
Anonymized usage statistics retained for analytics
Financial records retained for 7 years (legal requirement)

6. Data Security

We implement industry-standard security measures:

Encryption: All data transmitted via HTTPS/TLS
Database Security: Encrypted at rest, access controlled
API Keys: Hashed and stored securely
Access Control: Limited employee access, audited regularly
Monitoring: 24/7 security monitoring and logging

However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

7. Your Rights and Choices

7.1 Access and Correction

You can access and update your account information through the API Dashboard.

7.2 Data Portability

Request a copy of your data by emailing privacy@verdix.com.

7.3 Deletion

Delete your account and data by:

Contacting support@verdix.com
We'll confirm deletion within 30 days

7.4 Marketing Communications

Opt out of marketing emails via the unsubscribe link or email unsubscribe@verdix.com.

7.5 GDPR Rights (EU Users)

If you're in the EU, you have additional rights:

Right to access your personal data
Right to rectification (correction)
Right to erasure ("right to be forgotten")
Right to restrict processing
Right to data portability
Right to object to processing
Right to withdraw consent

8. Cookies and Tracking

8.1 Essential Cookies

We use cookies necessary for the Service to function:

Session management
Authentication
Security features

8.2 Analytics

We use minimal analytics to understand how our API is used. All analytics data is anonymized.

8.3 Third-Party Cookies

Stripe may set cookies during payment processing. See Stripe's Privacy Policy.

9. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:

EU Standard Contractual Clauses (for EU users)
Data Processing Agreements with all service providers
Compliance with applicable data protection laws

10. Children's Privacy

Our Service is not intended for children under 16. We do not knowingly collect data from children. If you believe we've collected data from a child, contact us immediately at privacy@verdix.com.

11. California Privacy Rights (CCPA)

If you're a California resident, you have the right to:

Know what personal information we collect and how we use it
Delete your personal information
Opt-out of the sale of your personal information (we don't sell data)
Non-discrimination for exercising your rights

To exercise these rights, email privacy@verdix.com.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We'll notify you of material changes by:

Email to your registered address
Prominent notice on our website
Updating the "Last Updated" date above

Continued use of the Service after changes constitutes acceptance of the updated policy.

13. Contact Us

For privacy-related questions, concerns, or requests:

Email: privacy@verdix.com
Support: support@verdix.com
Data Protection Officer: dpo@verdix.com

14. Additional Information

14.1 Do Not Track

We respect Do Not Track (DNT) signals. If your browser sends a DNT signal, we will not track your activity.

14.2 Data Breach Notification

In the event of a data breach affecting your personal information, we will notify you within 72 hours via email and provide information about the breach and steps we're taking.

14.3 Automated Decision Making

We do not use automated decision-making or profiling that significantly affects you.

15. Specific Service Information

15.1 API Usage Logs

We log API requests for:

Rate limiting enforcement
Troubleshooting and support
Service improvement

Logs are retained for 90 days, then automatically deleted.

15.2 Dashboard Data

Usage statistics displayed in your dashboard are calculated from the logs above and stored separately for historical analysis.

15.3 Stock Data

Stock symbols and companies you query via our API are logged as part of usage data. We do not share this with third parties or use it for investment purposes.

This Privacy Policy is designed to be transparent and comprehensive. If you have any questions or concerns, please don't hesitate to contact us at privacy@verdix.com.

View Terms of Service | Back to API | Home