Controller and Contact
Braintrade acts as data controller for account and service-operation data processed by the platform.
Legal
Privacy Policy
Version 2026-02-21
Auth and Session Data
We process identity metadata, session cookies, and token validation data to provide authentication and account access.
Billing and Provider Data
Payments are handled by external providers. Braintrade stores only the minimal billing status and provider references required for entitlements and support.
Logs and Request IDs
Request logs and request IDs are processed for reliability, abuse prevention, diagnostics, and incident response.
Retention and Security
Data is retained only as needed for operations, legal obligations, and security. Reasonable technical and organizational safeguards are applied.
International Transfers
If infrastructure or processors are outside your country, transfers are protected with appropriate safeguards required by applicable law (including GDPR where applicable).
Your Rights
Depending on your jurisdiction, you may have rights to access, rectification, deletion, restriction, portability, objection, and complaint with a supervisory authority.
Policy Changes
If this policy changes materially, Braintrade can require explicit re-acceptance for write operations.