Quarter Chart – Privacy Policy

Effective date: 2025-08-22

This Policy explains how SMART ENGINE SYSTEMS INC. (“Company”, “we”, “us”) collects, uses, and shares information when you use Quarter Chart websites, apps, and related services (the “Services”). By using the Services, you agree to this Policy and our Terms & Conditions.

1) Who we are

Controller: SMART ENGINE SYSTEMS INC., 15 – 75 Bayly St W #1056, Ajax, ON, Canada, L1S 7K7.
Contact: quarterchart@gmail.com

2) What we collect

Account data: Email address and password (hashed), plan tier, subscription status.
Billing & payments: Processed by Stripe. We do not store full card numbers or CVV. Stripe shares limited billing details (e.g., last4, brand, expiry), invoices, refunds/chargebacks.
Usage & device data: IP address, device/browser type, pages/features used, timestamps, referrer URLs, and event logs for security and performance.
Support communications: Messages you send us and the metadata needed to respond.

We do not host public user-generated content and we currently do not offer a public API.

3) Cookies, GA4, and our in-house analytics

We use cookies and similar technologies for:

Essential functions (login sessions, security).
Analytics to understand feature usage and improve the Services:
- Google Analytics 4 (GA4): uses cookies/identifiers. We minimize data (no IP logging by GA4, Ads features off unless you consent, limited data sharing). In the EEA/UK, GA4 runs only after consent via Google Consent Mode.
- In-house analytics: cookie-less or strictly first-party cookies; used only to measure our own audience/performance; not shared for advertising.

Cookie choices: Where required (e.g., EEA/UK), we ask for consent before using non-essential cookies. You can change preferences anytime via cookie settings or your browser. Blocking essential cookies may break core functionality.

4) How we use information

Provide the Services (accounts, authentication, payments, features).
Customer communications (transactional emails like receipts, trial/renewal notices, critical updates; weekly earnings summaries and occasional product updates—opt-out available).
Security/abuse prevention (fraud detection, rate-limiting, enforcing our Terms).
Analytics & improvement (aggregated usage insights to improve reliability and features).
Legal compliance (tax, accounting, lawful requests).

5) Legal bases (EEA/UK)

Performance of a contract (to provide the Services), legitimate interests (security, core analytics, service improvement), consent (non-essential cookies/GA4 and any marketing), and legal obligations (tax/accounting).

6) How we share information

Service providers: Stripe (payments), hosting/infrastructure (e.g., AWS), email/support tools, analytics (GA4). They act on our instructions under confidentiality and security commitments.
Compliance & safety: To comply with laws or protect rights, property, or safety.
Business transfers: In a merger, acquisition, or asset sale.

We do not sell or “share” your personal information for cross-context behavioral advertising (CPRA). If this changes, we will update this Policy and provide required opt-outs.

7) International transfers

Data may be processed in countries other than your own (including Canada and the United States). Where required, we use appropriate safeguards for international transfers (e.g., EU Standard Contractual Clauses).

8) Retention & deletion on request

Default retention: We keep account data while your account is active, then delete or anonymize it within 24 months after closure unless we must keep it longer for legal or security reasons.
Delete-on-request (our default): If you email us from your account address asking us to delete your data, we will delete or anonymize your personal information without undue delay—typically within 30 days of verifying your identity. We will also instruct our processors (e.g., Stripe, GA4) to delete associated data where applicable.
Legal/operational exceptions: We may retain data we are legally required to keep (e.g., invoices and tax records for 7 years), security/fraud logs needed to protect our Services, and minimal records to honor your opt-out preferences. Encrypted backups are overwritten on rolling cycles, typically within 30–90 days.
Logs & analytics: raw server logs up to 12 months; GA4 event data retained for 14 months; aggregated analytics may be kept longer in non-identifiable form.

9) Security

We use administrative, technical, and physical safeguards appropriate to the data (encryption in transit, access controls, least-privilege, monitoring). No method of transmission or storage is 100% secure.

10) Your choices & rights

Emails: You can opt out of non-transactional emails at any time via the unsubscribe link or by contacting us. Transactional emails (e.g., receipts, critical service notices) will still be sent.
Cookie controls: Use the cookie banner/controls or your browser settings. In the EEA/UK, non-essential cookies won’t run unless you consent.
Access/Deletion/Correction: Request access to, correction of, or deletion of your personal information by emailing quarterchart@gmail.com. We may ask you to verify your identity (e.g., reply from the account email or provide reasonable proof).
EEA/UK: GDPR rights include access, rectification, erasure, portability, restriction, and objection; you may complain to your data protection authority.
Canada: Rights under PIPEDA and applicable provincial laws to access/correct information and challenge our compliance.
California: CPRA rights to access, deletion, and correction. We do not sell/share your personal information.

11) Children

The Services are not directed to children under 16. If you believe a child provided personal information, contact us and we will take appropriate steps to delete it.

12) Changes to this Policy

We may update this Policy from time to time. If we make material changes, we will provide notice (e.g., by email or in-product) and update the effective date above. Your continued use after the effective date means you accept the updated Policy.

13) Contact

Email: quarterchart@gmail.com
Mailing address: SMART ENGINE SYSTEMS INC., 15 – 75 Bayly St W #1056, Ajax, ON, Canada, L1S 7K7