Privacy Policy

Last updated: 2026-05-06

This Privacy Policy describes how Hindsight ("we", "us", "our") collects, uses, and shares information when you use the Hindsight mobile application (the "App") and related services at gethindsightapp.com.

Hindsight is operated by Ryan Walker as a sole proprietorship in Michigan, USA. Contact: hello@gethindsightapp.com.

Information we collect

Information you provide

• Account details. When you create an account, we collect your email address and a hashed password (managed by Supabase Auth, our authentication provider).
• Trade data. Every trade you log in the App (symbol, asset type, direction, prices, quantity, dates, P&L, strategy and mental-state tags, and any notes you write) is stored on our servers. This is the core data the App is built to manage.
• Broker connection metadata (only if you connect a broker via the optional Pro feature). We store an opaque identifier and secret returned by SnapTrade, our brokerage data provider. We do not store your broker login credentials. SnapTrade handles the broker authentication directly.
• Support correspondence. If you email us, we keep a record of your message and our reply.

Information collected automatically

• Crash and performance data. We use Sentry to capture errors and performance traces so we can fix bugs. Sentry events are scrubbed of trade content (symbols, P&L, notes) before being sent. Sentry receives a device identifier and OS version so we can correlate reports.
• Authentication metadata. Supabase Auth records sign-in timestamps, IP addresses, and refresh-token rotation events as part of standard session management.

Information we do not collect

• We do not collect your real name unless you choose to provide it in support correspondence.
• We do not collect your location.
• We do not collect your contacts, photo library, microphone audio, or browsing history.
• We do not use advertising identifiers.
• We do not track you across other apps or websites.

How we use your information

• To run the App and the features you use (logging trades, calculating P&L, generating insights, exporting your data).
• To send transactional email (account confirmation, password resets, the optional Weekly Deep Analysis Recap for Pro users).
• To respond to support requests.
• To diagnose and fix bugs (via Sentry crash reports).
• To prevent abuse (rate limiting, fraud detection on subscription purchases).

We do not use your trade data to train any AI model. The Weekly Deep Analysis Recap (Pro feature) sends a summary of your trades to OpenAI to generate the review text; that data is processed under OpenAI's no-training-on-API-content policy. See the AI section below.

Who we share information with

We share information only with the service providers that make Hindsight work, and only the data each one needs:

• Supabase. Receives account data and trade data, encrypted at rest. Used for database and authentication.
• Resend. Receives your email address and email content. Used for transactional email delivery.
• Sentry. Receives scrubbed crash and performance events. Used for bug tracking.
• Apple. Receives subscription state via the App Store. Used for in-app purchases.
• RevenueCat. Receives subscription state and an anonymous user identifier. Used for subscription management.
• SnapTrade (Pro only). Receives a pseudonymous user ID and no personal information. Used for broker connection and trade sync.
• OpenAI (Pro only). Receives a summary of your trades for the Weekly Deep Analysis Recap. Used to generate the review.

We do not sell your information to anyone.

We may disclose information if required by law (subpoena, court order, etc.) or to protect Hindsight against fraud or security threats.

How long we keep your information

• While your account is active: indefinitely, so the App works.
• After you delete your account: all your trade data, notes, tags, and broker connections are immediately and permanently deleted. We retain a minimal record of the deletion (timestamp, anonymous account ID) for 30 days for fraud prevention, then it is purged.
• Crash data in Sentry: automatically deleted after 90 days.
• Email correspondence: retained for up to 2 years, then deleted.

Your rights

You can:

• Access your data. Your trade ledger PDF export in the App returns everything we have on the trade side. Email us if you want a fuller export.
• Correct your data. Every field in the App is editable.
• Delete your account in Settings. This is permanent and cascades to every other system.
• Object or restrict processing. Email us. We will stop processing and delete the relevant data on request.

If you are in the European Economic Area, the United Kingdom, or California, you also have specific rights under GDPR or CCPA, including the right to lodge a complaint with your local data protection authority. To exercise any rights, email hello@gethindsightapp.com.

Children

Hindsight is not directed at children under 13. We do not knowingly collect personal information from children. If you believe a child has signed up, email us and we will delete the account.

Security

• All data is transmitted over TLS.
• Database access is gated by Supabase Row Level Security policies that prevent any user from reading another user's data.
• Passwords are hashed by Supabase Auth using industry-standard algorithms.
• Sentry events are scrubbed of trade content client-side before transmission.
• We do not store broker passwords. Broker authentication happens on the broker's own site; we receive only an opaque token from SnapTrade.

No system is perfectly secure. If you discover a vulnerability, please email security@gethindsightapp.com.

AI features

The optional Weekly Deep Analysis Recap (Pro tier) summarizes your trades by sending a JSON payload of your trade data to OpenAI's API. We use OpenAI's commercial API, which under their current Data Processing Addendum does not retain your data after the request completes and does not use it to train OpenAI's models. We are not responsible for changes to OpenAI's policy; the most current version applies.

Not investment advice

Hindsight is a journal and reflection tool. Nothing in the App, including AI-generated text, is investment advice or a recommendation to buy or sell any security. Trades you make are your own decision.

Changes to this policy

If we update this policy, we will post the new version with a new "Last updated" date and, for material changes, send a notice to your account email at least 14 days before the change takes effect.

Contact

Email: hello@gethindsightapp.com

Mailing address: available on request