Privacy policy — calm, clear, minimal data

This Privacy Policy explains how Derixa collects, uses, stores, and protects personal information when you use our site.

By using the site, you consent to the practices described in this policy.

• We aim to collect minimal data needed to operate the service.
• We do not sell personal data.
• We use reasonable security measures but cannot guarantee perfect security.

We may collect information you provide directly and information generated during your use of the site.

Typical categories include account details, technical logs, and preference settings.

• Account data: email, username, password hash (never plain password).
• Usage data: pages visited, features used, basic interaction events (where enabled).
• Technical data: IP address (may be logged for security), browser/device info, timestamps.
• Preferences: selected UI settings, presets, saved options (where supported).

We use information to operate the service, improve performance, maintain security, and support account features.

We do not use your data to provide financial advice or personalized investment recommendations.

• Provide login, account management, and secure access control.
• Maintain service reliability, analytics, and crash diagnostics.
• Detect abuse, fraud, and unauthorized access attempts.
• Send transactional notices (password reset, verification) where enabled.

We use cookies and/or similar technologies (including local storage) to keep you signed in and to store basic preferences.

You can control cookies through your browser settings. Disabling cookies may break login and certain features.

• Session cookies: maintain authentication and navigation state.
• Preference storage: remembers UI preferences (theme, dismissals, acknowledgements).
• Security cookies: help detect suspicious activity and prevent abuse.

We do not sell your personal information.

We may share data only when required to operate the service, comply with legal obligations, or protect rights and safety.

• Service providers: hosting, email delivery, monitoring (if configured).
• Legal requirements: compliance with applicable law and lawful requests.
• Security: to prevent fraud, abuse, or harm.

We apply reasonable administrative, technical, and organizational measures to protect personal information.

No method of transmission or storage is 100% secure. You are responsible for maintaining password confidentiality and account security.

• Password storage: hashed passwords only.
• Output escaping: to reduce XSS risk.
• Access control: authentication checks on protected pages.
• Operational monitoring: logs may be used for abuse prevention.

We retain personal information only as long as necessary to provide the service and comply with legal requirements.

Retention periods depend on the data type and purpose.

• Account data: retained while your account is active.
• Security logs: retained for a limited time for security purposes.
• Support requests: retained to resolve the issue and improve service.

Depending on your jurisdiction, you may have rights to access, correct, delete, or restrict the processing of your personal data.

To exercise your rights, contact us with sufficient details to verify your identity.

• Request a copy of your stored account data (where applicable).
• Request correction of inaccurate information.
• Request deletion of your account data (subject to legal/operational requirements).
• Opt out of non-essential communications (where applicable).

The site may contain links to third-party sites or services. We are not responsible for their privacy practices.

Review the privacy policies of any third-party services you use.

• Third-party services operate under their own policies.
• We do not control third-party tracking or cookies.

We may update this Privacy Policy to reflect changes in the service, legal requirements, or best practices.

Your continued use of the site after an update constitutes acceptance of the revised policy.

• Review this page periodically.
• The latest version applies when you use the site.