This Policy explains how StockUp may collect, use, store, and protect information when you use the app, Quan, BYOK market data, portfolio tools, uploads, and subscriptions.
Email address, display name, account identifiers, login provider details, plan status, feature settings, and authentication records.
Watchlists, recently viewed tickers, searches, preferences, viewed stock pages, alerts, chart settings, and locally cached move context.
Prompts, responses, selected modes, chat history used for context, uploaded images or PDFs, and page context sent to Quan.
Holdings, shares, cost basis, imported brokerage statement data, manually entered values, portfolio snapshots, and risk/health check context.
Finnhub API keys or other provider credentials you connect, provider usage status, and provider error information needed to operate the app.
Device/browser details, IP-derived region, logs, usage events, errors, rate-limit events, security signals, and cookie/local storage data.
When you use Quan or AI-powered tools, StockUp may send prompts, page context, uploaded files, portfolio context, and relevant market data to AI model providers or cloud functions. Do not submit sensitive information you do not want processed for the requested feature.
Quan responses may be stored in your account or local browser session depending on the feature. Some chat context may be reused within the current session to improve continuity.
StockUp may enable Gemini API logging for the Google Cloud or Google AI Studio project used to operate Quan. When enabled, supported Gemini API calls may create project-private logs that include requests, responses, metadata, and prior-turn context. These logs are used to observe, debug, secure, and improve StockUp's AI features.
Authorized StockUp project administrators may be able to view those logs. StockUp does not use Gemini logs to manually review individual user conversations for advertising or resale. Google processes the information sent to Gemini to provide the AI service. According to Google's Gemini API documentation, billing-enabled project logs are not used for product improvement by default, but if StockUp chooses to create datasets, submit feedback, or share selected logs with Google, those shared prompts, responses, metadata, and files may be processed by Google, including human review, under Google's applicable terms.
If you connect a Finnhub key or other provider credential, StockUp uses it to request market data for features you access. We may store the key or related connection state so the app can continue working without asking you to reconnect repeatedly.
You can revoke or rotate provider keys through the provider. StockUp is not responsible for third-party provider accounts, provider data, provider fees, or provider terms.
StockUp may store certain data on your device using browser local storage, session storage, cache, or similar technologies. This may include same-day Live Move Context events, recently viewed tickers, usage meters, chart state, UI preferences, and temporary portfolio/session context.
Clearing browser storage may delete locally cached features or reset local-only history.
We may share information with service providers that help operate StockUp, including cloud hosting, authentication, databases, payment processors, AI model providers, analytics, security tools, and market data providers. We may also share information if required by law, to protect rights and safety, or during a business transfer.
We do not sell your personal portfolio data as a standalone product. If that ever changes, this Policy should be updated clearly before the change occurs.
Payments may be processed by third-party payment providers. StockUp may receive subscription status, plan identifiers, transaction IDs, renewal status, and limited billing metadata, but payment card details are generally handled by the payment processor.
We keep information as long as needed to provide the service, comply with legal obligations, resolve disputes, enforce agreements, secure the platform, and improve StockUp. Some data may be kept for shorter periods, such as local same-day move history or session-only chat context.
We use reasonable administrative, technical, and organizational safeguards to protect information. No online service is perfectly secure. You are responsible for securing your account credentials, devices, and third-party API keys.
StockUp is not intended for children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided information, contact us so we can review and delete it where appropriate.
StockUp is operated from the United States. If you use StockUp from another country, your information may be processed in the United States or other locations where our providers operate. You are responsible for complying with local laws that apply to your use of market data and financial tools.
Privacy questions or requests can be sent to the contact method provided in the app or on the StockUp website. Add a dedicated privacy contact before launch if one is not already listed.