Coldpine

Privacy Policy

Last updated May 27, 2026

Coldpine is operated by Coldpine LLC, a California limited liability company.

01The short version

We collect the minimum needed to run an account and a subscription: your email, authentication data, your settings, and (if you subscribe to Pro) billing identifiers from our payment processor. We don’t sell or rent your personal data, we don’t run advertising or cross-site trackers, and we never ask for your brokerage credentials. Coldpine does not connect to anyone’s broker. This policy explains the details.

02Who we are

Coldpine LLC is a California limited liability company. For any privacy question or request, contact hello@coldpine.io.

03What we collect

Account data:your email address and a securely hashed password (handled by our authentication provider), plus a “stay signed in” preference.

Settings: preferences you set in the app (e.g., score threshold, optional alert or digest destinations).

Billing data (Pro only): when you subscribe, our payment processor (Stripe) collects and processes your payment details. We do not receive or store your full card number; we store only non-sensitive billing identifiers (such as a customer and subscription ID and your plan status) needed to provide the subscription.

Operational logs: standard server and security logs (e.g., IP address, timestamps, request metadata) needed for reliability, abuse prevention, and debugging.

The Congressional disclosure data shown in the product is public government information about members of Congress. It is not about you.

04What we do not collect

No brokerage logins or API keys for your personal accounts. No full payment card numbers (Stripe handles card data under its own terms). No third-party advertising, ad-tech, or cross-site tracking.

05How we use it

To authenticate you; operate, secure, and improve the Service; process and manage your subscription and billing; send transactional email (sign-up confirmation, password reset, billing notices); and, only if you opt in, send a signal digest. We do not use your data for advertising and do not sell or rent it.

06Cookies and sessions

We use strictly necessary cookies to keep you signed in and to honor your “stay signed in” choice. These are required for the Service to function and are not used for advertising or cross-site tracking.

07Service providers (sub-processors)

We rely on a small set of providers strictly to run the Service, each processing data only to provide its function to us:

Supabase: authentication and account management. Stripe: payment processing and subscription billing. Resend: transactional and opt-in digest email. Neon: managed Postgres database hosting. Vercel: application hosting and delivery.

Each provider maintains its own privacy and security terms. We do not authorize them to use your data for their own purposes.

08Your choices and rights

You can access or update your settings in the app and cancel a Pro subscription from the billing portal at any time. You may request access to, a copy of, or deletion of your personal data by emailing hello@coldpine.io. We do not sell or rent personal information. Depending on where you live, you may have additional rights under laws such as the CCPA/CPRA or GDPR; we honor verifiable access and deletion requests regardless of location, and will expand these disclosures as the service grows.

09Retention and deletion

We keep account and settings data while your account is active. After you delete your account (or request deletion) we remove your personal data within a reasonable period, except limited records we must retain for legal, tax, accounting, or security reasons (for example, billing records required for financial compliance). Backups age out on a rolling basis.

10Security

Passwords are hashed by our authentication provider; sensitive secrets are encrypted at rest; traffic is served over TLS. We design for least-privilege access and minimal data collection. No system is perfectly secure, but we work to protect your information and will notify affected users of a material breach as required by law.

11International users and children

The Service is operated from the United States; if you use it from elsewhere, your data is processed in the U.S. and other countries where our providers operate. The Service is not directed to children under 18, and we do not knowingly collect their personal data.

12Changes and contact

Material changes will be reflected by the “last updated” date above and, where appropriate, an in-app or email notice. Privacy questions or requests: hello@coldpine.io.