Privacy Policy

Last updated: May 10 2025

1. Who we are

SniperSignals ("we", "us", "our") is a division of Nordmatic Corp., an Alberta‑registered company (BN 70752 3296 RP0001) headquartered in Calgary, Canada. We provide cryptocurrency‑market analytics and alert services at SignalSnipers.com.

2. Data we collect

• Account data – email address, display name, hashed password.
• Subscription data – Stripe customer ID, subscription tier, last‑4 of card (we never receive full card details).
• Technical data – IP address, browser fingerprint cookie ns_fp, and basic device metadata (OS, browser version) for fraud prevention.
• Usage data – page views, API calls, and webhook events (signal fetches, dashboard JSON hits).
• Support data – messages you send us via email or contact form.

3. How we use your data

We process personal data only for the purposes below:

• Authenticate you and deliver paid content.
• Process payments and manage trials via Stripe.
• Detect and block trial abuse, credential‑stuffing, and DDoS attacks.
• Send transactional emails (signup confirmations, password resets, payment receipts).
• Meet bookkeeping, tax, and legal obligations.
• Improve site reliability and security (error logs, performance metrics).

4. Legal bases for processing

Under Canada’s PIPEDA and (where applicable) the EU GDPR, we rely on:

• Contractual necessity – to provide the service you requested.
• Legitimate interests – to secure the platform and prevent fraud.
• Legal obligation – to maintain accounting records.
• Consent – for optional analytics or marketing emails (none at launch).

5. Third‑party sharing

We share the minimum necessary data with:

• Stripe, Inc. – payment processing (card details handled solely by Stripe).
• Mail service provider – Postmark/App‑Mail (transactional email). Only email address and template variables are sent.
• Error‑tracking service – Sentry.io (stores anonymised request IDs, no raw IP in stack traces).

We do not sell or rent your personal information. Data is disclosed to law‑enforcement only when legally compelled.

6. Cookies & similar tech

We set a single first‑party cookie ns_fp (random UUID) to enforce one trial per user and to throttle abuse. Turning off this cookie will prevent login. No advertising cookies are used. Optional analytics cookies will ask for consent before activation.

7. Data retention

Account and billing data are kept while your subscription or trial is active and for up to 7 years thereafter to satisfy tax and audit requirements. Server logs are rotated every 30 days. You may request deletion sooner unless we are legally required to retain the data.

8. Security

All traffic is encrypted with TLS 1.2+. Passwords are hashed with argon2. Secrets are stored in server‑side environment variables. Internal access is protected by SSH keys and two‑factor authentication.

9. International transfers

Your data may be processed on servers in the United States (Stripe, Sentry, Postmark). These vendors participate in the EU‑U.S. Data Privacy Framework or provide Standard Contractual Clauses to ensure adequate protection.

10. Your rights

You can request access, correction, portability, or deletion of your personal data at any time. To exercise these rights, email us at info@snipersignals.io. We will respond within 30 days.

11. Contact

Data Controller: NORDMATIC CORP.
 185 Westchester Way
Chestermere, AB T1X 1B8, Canada

Email: info@snipersignals.io