Privacy Policy

Last updated: March 2, 2026

1. Who We Are

TradeSphere.ai is operated by Nimbus.io, LLC ("Company," "we," "us"), a Texas limited liability company. This policy describes how we collect, use, and share information when you use our website, APIs, and related services (collectively, the "Service").

2. Information We Collect

Information You Provide

  • Account information: email address, name, and password when you create an account
  • Payment information: billing details processed securely by Stripe (we do not store credit card numbers)
  • Communications: any information you provide when you contact us for support

Information Collected Automatically

  • Usage data: API requests, endpoints accessed, request timestamps, and response times
  • Device information: IP address, browser type, operating system, and referring URLs
  • Cookies: session cookies for authentication and preference cookies (see Section 6)

3. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve the Service
  • Process payments and manage subscriptions
  • Enforce rate limits and prevent abuse
  • Send transactional communications (account verification, billing receipts, service updates)
  • Respond to support requests
  • Analyze usage patterns to improve performance and reliability
  • Comply with legal obligations

We do not sell your personal information. We do not use your data for advertising purposes.

4. Information Sharing

We share information only in the following circumstances:

  • Payment processing: Stripe receives your billing information to process payments. Stripe's privacy policy governs their use of this data.
  • Infrastructure providers: Railway (hosting) and Cloudflare (CDN/security) process requests on our behalf. These providers act as data processors under our instructions.
  • Legal requirements: We may disclose information if required by law, subpoena, or government request.
  • Business transfers: In the event of a merger, acquisition, or sale of assets, user information may be transferred as part of that transaction.

5. Data Retention

We retain account information for as long as your account is active. API usage logs are retained for 90 days for rate limiting and analytics purposes, then aggregated or deleted.

Upon account deletion, we remove your personal information within 30 days, except where retention is required by law (e.g., billing records for tax purposes).

6. Cookies

We use the following types of cookies:

  • Essential cookies: Required for authentication and session management. These cannot be disabled without breaking core functionality.
  • Analytics cookies: Help us understand how visitors interact with the site. These are only set with your consent.

You can manage cookie preferences through the cookie consent banner displayed on your first visit, or by adjusting your browser settings.

7. Data Security

We implement industry-standard security measures including encryption in transit (TLS), hashed passwords (bcrypt), and secure API key generation. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

8. Your Rights

Depending on your location, you may have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your personal information
  • Object to or restrict certain processing of your data
  • Request a portable copy of your data
  • Withdraw consent for optional data processing

To exercise any of these rights, file a ticket on our support page. We will respond within 30 days.

9. International Users

The Service is operated from the United States. If you access the Service from outside the United States, your information may be transferred to and processed in the United States. By using the Service, you consent to this transfer.

For users in the European Economic Area (EEA), we process personal data on the legal bases of contractual necessity (to provide the Service), legitimate interest (to improve and secure the Service), and consent (for optional analytics).

10. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please file a ticket on our support page and we will delete it.

11. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via email or a notice on the Service. The "Last updated" date at the top reflects the most recent revision.

12. Contact

For privacy-related inquiries:

Nimbus.io, LLC
P.O. Box 450352
2346 Beltline Rd.
Garland, TX 75044-99981

Support: tradesphere.ai/support