Privacy Policy

CV Babah Digital ("BabahAlgo," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our website, platform, and services.

1. Data Collection

We collect the following categories of personal information:

Account information: When you register for an account, we collect your name, email address, phone number, and country of residence. For PAMM and institutional clients, we may also collect identification documents, proof of address, and financial information as required by our onboarding process.

Trading data: We collect and store records of trading signals delivered to you, trade execution data for managed accounts, portfolio performance metrics, and risk analytics. This data is necessary to provide our services and generate performance reports.

Technical data: We automatically collect information about your device, browser type, operating system, IP address, access times, and pages viewed when you use our platform. This data helps us maintain security, diagnose technical issues, and improve our services.

Communication data: We retain records of your communications with us, including support requests, feedback, and correspondence via email, WhatsApp, or our contact form.

2. How We Use Your Data

We use your personal information for the following purposes:

• To provide, maintain, and improve our trading services and platform
• To process transactions, manage subscriptions, and handle billing
• To deliver trading signals, performance reports, and account notifications
• To respond to your inquiries and provide customer support
• To comply with legal obligations and regulatory requirements
• To detect and prevent fraud, abuse, and security threats
• To send service-related communications (not marketing) about your account

3. Data Storage and Retention

Your personal data is stored on secure servers protected by industry-standard security measures including encryption at rest (AES-256) and in transit (TLS 1.3). Our infrastructure is hosted on dedicated servers with access controls, monitoring, and automated backup systems.

We retain your personal data for as long as your account is active or as needed to provide our services. After account closure, we retain certain data for a minimum of 5 years to comply with legal and regulatory requirements, resolve disputes, and enforce our agreements. Trading records and performance data may be retained indefinitely in anonymized form for research and benchmarking purposes.

4. Third-Party Sharing

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. We may share your information in the following circumstances:

Broker partners: To facilitate account opening and trade execution for PAMM and VPS License clients, we share necessary account information with our partner brokers. These brokers are regulated entities with their own privacy and data protection obligations.

Payment processors: We share billing information with our payment processing partners to process subscription payments and performance fees.

Legal compliance: We may disclose your information when required by law, regulation, legal process, or governmental request, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

Service providers: We use third-party services for email delivery, analytics, and infrastructure hosting. These providers are contractually obligated to protect your data and use it only for the purposes we specify.

5. Cookies and Tracking

We use cookies and similar technologies to maintain session state, remember your preferences, and understand how you use our platform. For full details on our cookie practices, see our Cookie Policy.

We use essential cookies that are necessary for the platform to function (such as authentication tokens) and optional analytics cookies that help us understand usage patterns. You can control cookie preferences through your browser settings.

6. Your Rights

You have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your data, subject to legal retention requirements
• Portability: Request your data in a structured, machine-readable format
• Objection: Object to processing of your data for specific purposes

To exercise any of these rights, contact us at [email protected]. We will respond to your request within 30 days.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of data at rest and in transit
• Role-based access control with principle of least privilege
• Regular security audits and vulnerability assessments
• Automated monitoring and alerting for security events
• Secure backup and disaster recovery procedures

While we take all reasonable precautions, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security of your data.

8. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by email or through a prominent notice on our platform at least 14 days before the changes take effect.

We encourage you to review this Privacy Policy periodically. The "Last updated" date at the top of this page indicates when the policy was last revised.

9. Contact

For questions or concerns regarding this Privacy Policy or our data practices, contact us at: