Drawdn

Privacy Policy

Last updated: 27 March 2026

Drawdn ("we", "us", "our") provides portfolio risk analytics at drawdn.com. This policy explains what data we collect, how we use it, and your rights.

1. Data We Collect

  • Google profile information — name, email address, and profile picture, received when you sign in with Google OAuth.
  • Portfolio holdings — ticker symbols, quantities, and purchase prices you enter into the platform.
  • Usage analytics — pages visited, features used, and timestamps to help us improve the service.

2. How We Store Your Data

Your data is stored in an encrypted Neon Postgres database hosted in the EU. All connections use TLS encryption in transit. We retain your data for as long as your account is active.

3. Third-Party Services

We use the following third-party services:

  • Google OAuth — for authentication. Google receives your sign-in request but not your portfolio data.
  • EODHD — for historical market data (prices, dividends). We send ticker symbols only; no personal data is shared.
  • Hugging Face — for AI-powered portfolio analysis. We send aggregated portfolio metrics; no personally identifiable information is included.
  • Vercel — for hosting and deployment. Vercel processes requests on our behalf under their privacy policy.

4. Cookies

We use session cookies only to keep you signed in. We do not use tracking cookies, advertising cookies, or third-party analytics cookies.

5. Your Rights (GDPR)

If you are in the EU/EEA, you have the right to:

  • Access your data — view everything we store about you.
  • Export your data — use the export feature on the Account page to download your portfolio data.
  • Delete your data — request complete account and data deletion.
  • Rectify inaccurate data — contact us to correct any errors.
  • Restrict processing — ask us to limit how we use your data.

To exercise any of these rights, email us at privacy@drawdn.com. We will respond within 30 days.

6. Data Retention

We keep your data for as long as your account is active. If you delete your account, we remove all personal data and portfolio information within 30 days, except where we are legally required to retain it.

7. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes by email or a notice on the platform.

8. Contact

For privacy-related questions, contact us at privacy@drawdn.com.