NeoTLog ("we", "us") is operated by NeoTradeLog, based in Uppsala, Sweden. For any privacy question or request, contact privacy@neotlog.com. For the purposes of the EU General Data Protection Regulation (GDPR), we are the data controller of the personal data described below.
This explains what personal data NeoTLog collects, why, how we store and protect it, who we share it with, and the rights you have. It applies to the NeoTLog web application.
Account data. When you create an account we collect your email address and a password. Your password is never stored in plain text — it is stored hashed by our authentication provider (see Section 5).
Trading data you create or import. The trades you import or enter (such as symbols, quantities, prices, profit/loss, dates and times), plus anything you add: notes, tags, strategies, account labels, journal entries, and fee settings. You provide this data; we store it so the app can display and analyze it for you.
Local data on your device. The app keeps a copy of your data in your browser's local storage so it loads quickly and works offline. This stays on your device and is cleared if you clear your browser data.
What we do not collect. We do not collect payment information. We do not sell your data, and we do not use it for advertising.
| Purpose | GDPR legal basis |
|---|---|
| Create and operate your account; provide the journal features | Performance of a contract |
| Authenticate you and keep your account secure | Contract / legitimate interests |
| Maintain, debug, and protect the service from abuse | Legitimate interests |
| Comply with legal obligations | Legal obligation |
We use the following third-party processors, who process data on our behalf:
Your account and trading data are stored within the European Union (Ireland) and are not transferred outside the European Economic Area for storage. Static application files are delivered through a global content-delivery network, which serves only the app's code and does not contain your personal data.
We keep your account and trading data for as long as your account is active. If you delete your account, or ask us to delete your data, we remove it from our live systems within 30 days, except where we must retain certain records to comply with the law.
Under GDPR you have the right to access, correct, delete, restrict, or object to the processing of your data, to receive it in a portable format, and to withdraw consent where processing is based on consent.
You also have the right to complain to your supervisory authority. In Sweden this is the Integritetsskyddsmyndigheten (IMY), imy.se.
Data is transmitted over encrypted connections (HTTPS). Access is restricted at the database level so you can only access your own records (row-level security), and passwords are stored hashed. No system is perfectly secure, but we take reasonable measures to protect your information.
NeoTLog uses your browser's local storage and a login session token to keep you signed in and to cache your data for performance. We do not use advertising or third-party tracking cookies.
NeoTLog is not intended for anyone under 18, and trading-related tools are not appropriate for minors. We do not knowingly collect data from children.
We may update this policy from time to time. We will post the new version here and update the "Last updated" date.
NeoTradeLog — privacy@neotlog.com