Legal
Privacy Policy
Effective: To be confirmed before launch
AnalystBook is currently in pre-launch development. The full GDPR-compliant Privacy Policy will be published before the platform opens for paid registration. This page is a placeholder summarising the data practices that the final policy will document in detail.
What we collect
Account information you provide when you sign in (name and email via Google OAuth or email-based session). Research data you create inside AnalystBook (notes, saved filings, todos, watchlists). Operational metadata required to run the service (login timestamps, error logs, page-load metrics).
What we do not collect
We do not buy, sell, or trade your personal data. We do not run ad networks or behavioural-tracking pixels. We do not share your research notes with anyone — not other customers, not third-party data brokers, not LLM providers for training.
Where data is stored
All customer data is stored in Google Cloud (Cloud SQL Postgres) in the EU region. Backups are encrypted at rest. Connections are encrypted in transit (TLS).
How long we keep it
Account and research data are retained for as long as your account is active. If you delete your account, all your private data is removed within 30 days. Public-data caches (SEC filings) are retained as part of the shared service.
Your rights (GDPR)
You have the right to access, correct, export, and delete your personal data. You can email contact@analystbook.com with a Subject Access Request and we will respond within 30 days. You can also delete your account at any time from the settings page (functionality coming with launch).
Cookies
AnalystBook uses an essential session cookie for authentication (NextAuth). We do not set non-essential cookies for tracking, analytics, or advertising at this time. If that changes, this policy and a cookie banner will be updated accordingly.
Sub-processors
We use the following third-party services to operate AnalystBook: Google Cloud (hosting), Stripe (payments), and the email provider used for transactional notifications. The final policy will list each sub-processor with its role and data-processing scope.
Contact
Privacy questions, complaints, or data requests should go to contact@analystbook.com. The data controller is Arda Solmaz, based in Ireland.
Questions? Email contact@analystbook.com.