Privacy Policy

Protecting your data and privacy

Last updated: November 30, 2025. Deepin processes personal data as a controller under the EU General Data Protection Regulation (GDPR), the UK GDPR, and applicable U.S. privacy statutes.

Information We Collect

  • Account data such as your name, email address, authentication identifiers, and billing details that you share when creating or updating your profile.
  • Usage data including feature interactions, credit consumption, device information, approximate geolocation, and diagnostic logs that help us keep the platform reliable and secure.
  • Market and portfolio inputs that you optionally supply to build watchlists, models, or AI prompts. These are encrypted at rest and used only to provide the requested functionality.

How We Use Your Data

  • Deliver, maintain, and improve Deepin, including credit tracking, portfolio analytics, alerting, and AI assistance.
  • Detect, prevent, and investigate fraud, abuse, or violations of our Terms of Service.
  • Communicate product updates, critical security notices, and support responses. You can opt out of non-essential emails at any time.

Lawful Bases for Processing (GDPR)

  • Performance of a contract when we provide requested services such as credit purchases or AI analysis.
  • Legitimate interests in securing the platform, preventing misuse, and improving user experience.
  • Compliance with legal obligations related to taxation, financial reporting, or regulatory requests.
  • Consent for optional analytics, marketing communications, and cookies where required. You may withdraw consent without affecting the legality of prior processing.

Data Retention & Security

  • We retain personal data only for as long as necessary to deliver the service, meet legal obligations, or resolve disputes.
  • Infrastructure is hosted on SOC 2–compliant providers with encryption in transit (TLS 1.2+) and at rest (AES-256). Access to production systems is restricted via least-privilege policies and audited regularly.

International Transfers

  • Deepin may process data in the United States and European Union. When transferring personal data outside your jurisdiction we rely on Standard Contractual Clauses and equivalent safeguards.

Your Rights

  • Access, correct, or delete your personal data.
  • Restrict or object to processing, and request data portability.
  • Lodge a complaint with your local supervisory authority if you believe we have violated data protection laws.
  • Exercise these rights by emailing privacy@deepinhq.com. We will respond within 30 days (or sooner, where required).

Questions or complaints?

Email privacy@deepinhq.com or write to Deepin Privacy Office, 123 Market Street, London EC2V 5AE, United Kingdom.