Privacy Policy

Effective date: October 31, 2025

This Privacy Policy explains how we collect, use, and share information when you visit, sign up for, or pay for access to the Momentum Screener service (the “Service”). We aim to keep this document plain, specific to how our app actually works, and transparent about the few third parties we rely on.

1. Who we are

Momentum Screener is a web-based investment research tool that ranks and tracks stocks based on long-term momentum performance. We provide account-based access to research tools. You can contact us about privacy at [email protected].

2. What we collect

We only collect the information we reasonably need to run an account-based "Software as a Service" (SaaS) product.

2.1 Information you provide to us

  • Account email (required): We collect your email address when you sign up or sign in. This is used for authentication, account notices, and security.
  • First and last name (optional): If you choose to tell us your name, we will store it and may use it to personalize emails.
  • Communication preferences: You can opt in to receive product updates and marketing emails. If you don't opt in, we will only send transactional / account emails.

2.2 Payment-related information (via Paddle, our merchant of record)

We use Paddle as our payment processor. When you make a purchase, Paddle collects your billing information—including country, ZIP/postal code, and full payment card details—through their secure hosted checkout. The full payment card details are handled exclusively by Paddle and are never accessible to us. Paddle then shares certain non-sensitive billing details with us (such as card type and the last four digits of your card) through their merchant dashboard and webhook system.

How we use and store this information: To operate our service effectively, we maintain a synchronized local copy of the billing information that Paddle provides to us. This local copy does not include full card numbers or any sensitive authentication data, which Paddle does not disclose to us. We use the locally stored information to manage customer accounts, process subscriptions, provide support, and reliably link billing events to user accounts. Keeping this data locally also ensures that our system remains functional without relying solely on Paddle's rate-limited API. All locally stored billing information is kept up to date through Paddle's webhook system, and if Paddle updates or deletes your billing data, those changes are reflected on our end as well.

Important: We are responsible for protecting the personal data that we collect or store locally. Paddle remains responsible for the personal data it collects and stores within its own systems. If you wish to view, update, or delete billing information, you can contact us at any time, and we will coordinate with Paddle to fulfill your request. Paddle's Privacy Policy is available here: https://www.paddle.com/legal/privacy.

2.3 Automatically collected data

  • Server-side analytics (Matomo): We run a self-hosted instance of Matomo to understand which pages are used, which features are popular, and where performance issues occur. This may include IP address (which we can configure to be anonymized), user agent, timestamps, referrer, and visited URLs. We do not send this data to third-party advertising networks.
  • Error and crash data (self-hosted Bugsink): We run Bugsink on our own infrastructure to capture application errors and stack traces. Error events can include the URL being viewed, your browser type, and technical context at the time of the error. This is used only for debugging and reliability, not for marketing or behavioral profiling.

2.4 Authentication storage (cookies / localStorage)

We use cookies and/or localStorage to: (a) keep you signed in, (b) store tokens or session identifiers, and (c) remember app preferences (such as layout, filters, or saved UI state). These are functional and security-related cookies, not advertising cookies.

2.5 OAuth sign-in information

We offer “Sign in with Google” and “Sign in with Microsoft”. These are standard OAuth flows triggered via links, not embedded third-party tracking scripts. We receive only the identity information needed to create or log in to your account (typically your verified email, sometimes your name). We do not gain access to your full Google/Microsoft account. If we add providers, we will update this section accordingly.

3. How we use the information

  • To create and manage your account (legal basis: performance of a contract).
  • To process payments and subscriptions via Paddle.
  • To send transactional emails (account changes, password resets, billing notices, service interruptions).
  • To send product updates and marketing only if you opted in.
  • To secure and improve the Service using Matomo (usage insights) and Sentry (error diagnostics).

4. Legal bases (for GDPR / UK GDPR)

Where GDPR or similar laws apply, we process personal data on the following bases: (a) to perform a contract with you (providing the app and your account); (b) our legitimate interests in running a secure, reliable SaaS (analytics, error logging, fraud prevention); and (c) your consent, where you opt in to marketing emails.

5. Cookies and local browser storage

We currently use cookies and other local browser storage tools for:

  • Authentication: Stay signed in.
  • Security: Prevent abuse of sign-in flows.
  • Preferences: UI / app settings.
  • Analytics (Matomo): Page and feature usage.

We do not use advertising cookies, and we do not track you across the web. This means we do not “sell” or “share” your information for cross-context behavioral ads, as defined by CPRA/CCPA.

Cookie Preferences

Disable Analytics Cookies

When enabled, we will not store cookies for analytics tracking. Essential cookies for authentication and security will still be used.

You can control analytics cookies using the toggle above. When you disable analytics cookies, we will not track your browsing activity, but essential cookies for authentication and security will still be used. This preference is saved in your browser's local storage.

6. Who we share information with

We do not sell personal information.

We share data only with:

  • Paddle (payments): To process your subscription and comply with tax and invoicing requirements. Paddle automatically creates transactions with customer and address information.
  • Our own infrastructure: Self-hosted Matomo and self-hosted Sentry, run by us, to operate and improve the Service.
  • Service providers we use to send emails: If we send transactional or marketing emails through an email provider, we will share only what is needed (usually your email and name, if provided).

If the law requires it (for example, tax authorities or to respond to a valid legal request), we may disclose limited information, but we aim to minimize disclosures.

7. Data retention

We keep your account data for as long as you have an account with us. If you cancel or delete your account, we will retain only what we must keep for legal, tax, fraud-prevention, or audit purposes (for example, invoice records tied to a purchase through Paddle). All identifying user data is anonymized at the time of deletion. Paddle also retains payment records in line with its own legal obligations.

8. Your rights

Depending on where you live (EU/EEA, UK, California, and other U.S. states with privacy laws), you may have some or all of these rights:

  • Right to know / access what data we hold about you.
  • Right to correct inaccurate data.
  • Right to delete data, within legal/contract limits.
  • Right to opt out of marketing emails at any time (every marketing email will have an unsubscribe link).
  • Right not to be discriminated against for exercising your privacy rights (CCPA/CPRA).

To exercise these rights, email [email protected]. We may need to verify your identity before acting on a request.

9. International transfers

We are U.S.-based. Some of the tools we use or the infrastructure we run may be located in other regions. Where required, we will apply appropriate safeguards for international transfers.

10. Children’s privacy

Our Service is not directed to children under 16, and we do not knowingly collect personal information from children under 16.

11. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in the Service or in privacy laws (for example, CPRA/CCPA updates finalized in 2025). We will post the updated version on this page and update the “Effective date” above.

12. Contact Us

If you have any questions about this Policy or about your data, You can contact us:

Privacy Policy - Momentum Screener - Momentum Screener