TradeYogi

Privacy Policy

Last updated: 10 April 2026 | Effective date: 10 April 2026

1. Introduction

TradeYogi ("we", "us", "our"), a platform operated by GetDeaddicted LLC, is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, share, and safeguard your information when you use our Platform, in compliance with the Digital Personal Data Protection Act, 2023 ("DPDP Act"), the Information Technology Act, 2000, the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and other applicable Indian laws.

2. Data Fiduciary Details

For the purpose of the DPDP Act, 2023, the Data Fiduciary is:

GetDeaddicted LLC (TradeYogi)
Email: privacy@tradeyogi.in
Data Protection Officer: dpo@tradeyogi.in

3. Personal Data We Collect

We collect the following categories of personal data:

3.1. Identity and Contact Data: full name, email address, phone number, date of birth, profile photograph.

3.2. Account Data: username, hashed password, preferences, subscription plan, and billing history.

3.3. KYC Data (where applicable): PAN number, Aadhaar (masked), address proof, and bank details for payment verification.

3.4. Financial Data: broker account identifiers, API tokens (encrypted), payment method (last 4 digits of card), GSTIN if applicable.

3.5. Usage Data: IP address, device type, browser, operating system, log files, clicks, feature usage, strategies viewed, and time spent on the Platform.

3.6. Trading Data:paper-trading history, strategy configurations, P&L, and back-test inputs (not used for advisory purposes).

3.7. Astrological Data (optional): date, time, and place of birth, used only if you enable personalised Muhurta features.

3.8. Communication Data: support tickets, chat history, and feedback you submit.

4. Lawful Basis and Purposes of Processing

Under Section 6 of the DPDP Act, 2023, we process your personal data based on your free, specific, informed, unconditional, and unambiguous consent, or where permitted for legitimate uses. The purposes include:

  • Creating and managing your TradeYogi account;
  • Providing educational content, signals, back-tests, and paper trading;
  • Processing subscriptions, payments, invoices, and tax compliance;
  • Verifying identity and preventing fraud or abuse;
  • Delivering product updates, security alerts, and transactional emails;
  • Personalising your experience (including optional astrological features);
  • Improving the Platform through analytics, bug fixes, and machine learning;
  • Complying with legal, regulatory, and audit obligations in India.

5. Your Rights under the DPDP Act, 2023

As a Data Principal, you have the following rights, exercisable free of charge by writing to privacy@tradeyogi.in:

  • Right to Access: obtain a summary of your personal data and processing activities (Section 11).
  • Right to Correction and Erasure: correct inaccurate data or request deletion where no longer necessary (Section 12).
  • Right to Grievance Redressal: complain to our Grievance Officer (Section 13).
  • Right to Nominate: appoint another individual to exercise your rights in the event of death or incapacity (Section 14).
  • Right to Withdraw Consent: at any time, with effect only on future processing (Section 6(4)).

We will respond to verified requests within thirty (30) days.

6. Data Sharing and Disclosure

We do not sell your personal data. We share data only in the following limited circumstances:

6.1. Data Processors: cloud hosting (AWS Mumbai region), payment gateways (Razorpay, Stripe), email providers (Resend, SendGrid), analytics (self-hosted or privacy-respecting providers), and AI inference providers, each bound by contractual data protection obligations.

6.2. Brokers and Exchanges: only the minimum data required to route orders via broker APIs (Angel One, Zerodha, Upstox) when you explicitly enable live trading integrations.

6.3. Legal and Regulatory: if required by law, court order, SEBI, Income Tax Department, or law-enforcement authorities.

6.4. Business Transfers: in the event of merger, acquisition, or asset sale, with prior notice to you.

7. Cross-Border Data Transfers

We primarily store personal data within India. Some of our sub-processors (such as AI model providers) may process data outside India. Such transfers will only be made to countries not restricted by the Central Government under Section 16 of the DPDP Act and will be subject to appropriate safeguards.

8. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes set out in this Policy or as required by law (e.g., eight years for financial and tax records under the Companies Act, 2013 and Income Tax Act, 1961). When no longer required, data will be securely erased or anonymised.

9. Security Measures

We implement reasonable security practices under Rule 8 of the SPDI Rules, 2011 and Section 8 of the DPDP Act, 2023, including:

  • TLS 1.3 encryption in transit and AES-256 at rest;
  • Hashed and salted passwords (bcrypt / argon2);
  • Encrypted vault storage for broker API keys;
  • Role-based access control and least-privilege policies;
  • Regular vulnerability scans, penetration tests, and audits;
  • Multi-factor authentication for administrative accounts.

10. Data Breach Notification

In the event of a personal data breach, we will notify the Data Protection Board of India and affected users in the manner and within the time prescribed under Section 8(6) of the DPDP Act, 2023.

11. Children's Data

The Platform is not intended for individuals under the age of 18. We do not knowingly collect personal data from children. In accordance with Section 9 of the DPDP Act, 2023, we will not process personal data of children without verifiable parental consent, nor undertake tracking, behavioural monitoring, or targeted advertising directed at children.

12. Cookies and Tracking

We use strictly necessary cookies for authentication and session management, and optional analytics cookies (with your consent) to improve the Platform. You can manage cookie preferences through your browser settings. We do not use third-party advertising cookies.

13. Grievance Officer

In accordance with Rule 5(9) of the SPDI Rules, 2011 and Section 8(10) of the DPDP Act, 2023, you may contact our Grievance Officer for any complaint regarding the processing of your personal data:

Grievance Officer
Email: grievance@tradeyogi.in
Response time: Within 48 business hours
Resolution time: Within 30 days of receipt

14. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be notified via email or in-app notice at least seven (7) days before taking effect. The "Last updated" date at the top of this page indicates when this Policy was last revised.

15. Contact Us

For any questions about this Privacy Policy or our data practices, please contact us at privacy@tradeyogi.in or visit our Contact page.