Back to MomentumTrackr

Privacy

Privacy Policy

This policy explains what personal data MomentumTrackr collects, how it is used, and the choices and rights you have. We are privacy-first by design and try to keep collected data to the minimum needed to run the product.

Last updated · May 2026

Who we are

MomentumTrackr is operated by JSK Consulting, with John Smith Kristiansen as the legal sole business operator. The service is produced in Norway for investors tracking U.S. financial markets and is the data controller for personal data described in this policy. Contact: support@momentumtrackr.com.

What data we collect

  • Account data. If you create an account: email address, display name, hashed password (or sign-in via Google), and basic account metadata such as creation date and last sign-in.
  • Subscription data. If you subscribe: plan, status, renewal date, and a reference to your customer record at Paddle. We do not see or store full card numbers.
  • Portfolio data. By default, your holdings, watchlist, and workspace preferences are stored locally in your browser. If you opt in to sync, an encrypted-at-rest snapshot is stored under your account.
  • Support data. Messages you send us, with the email used to contact us.
  • Technical and usage data. Minimal logs (IP, user agent, timestamps) for security, abuse prevention, and aggregate analytics. We avoid cross-site advertising trackers.

What we do not collect

  • We do not connect to brokerages, banks, or Plaid. We never see account credentials, balances, or transaction history.
  • We never request trading permissions.
  • Anonymous use does not require an account; portfolio data stays in your browser.

How we use data

  • To provide, secure, and improve the service.
  • To authenticate sign-ins and protect against fraud and abuse.
  • To process subscriptions, renewals, and refunds via Paddle.
  • To respond to support and privacy requests.
  • To send essential service emails (e.g. billing receipts, account changes). Marketing emails, if any, are opt-in.

Local browser storage

MomentumTrackr stores portfolio holdings, watchlists, and workspace preferences in your browser using localStorage. This data does not leave your device unless you explicitly opt in to sync. Clearing browser data, switching browsers, or using a private window will remove it.

Authentication and accounts

Accounts are managed through our authentication provider, with email and password (verified via email) or Google sign-in. Sessions are maintained with secure cookies. You can change your email, change your password, or delete your account from Account Settings. Sensitive actions require re-authentication.

Payments and Paddle (Merchant of Record)

Paid subscriptions are processed by Paddle, our Merchant of Record. When you subscribe, Paddle collects and processes the data needed to take payment, calculate any applicable sales tax / VAT / GST, issue invoices, and handle chargebacks. We receive a customer reference, plan, status, and renewal date — never full card details. Paddle's processing is governed by Paddle's privacy notice.

Cookies and analytics

We use essential cookies for sign-in sessions, security, and basic preferences. Paddle may set cookies needed to process checkout securely. We may use lightweight, aggregate analytics to understand product usage; we avoid tools that build cross-site advertising profiles. See our Data & Cookies page for details.

Sharing and processors

We do not sell personal data. We share limited data only with processors that help us run the service, including:

  • Paddle — payments and subscription billing.
  • Our cloud and authentication provider — hosting, database, and account management.
  • Email delivery provider — transactional email.

These processors act on our instructions under written agreements and only access data needed for their function.

International transfers

MomentumTrackr is operated from Norway and serves an international audience. Data may be processed in the EEA, the United Kingdom, or the United States by our processors. Where applicable, transfers rely on Standard Contractual Clauses or equivalent safeguards.

Data retention

Account and subscription data are kept while your account is active and for a limited period afterwards to satisfy legal, accounting, and tax requirements (typically up to the period required by Norwegian law for billing records). Support emails are kept while needed to help you. Local browser data persists until you clear it.

Your rights

Subject to applicable law, you have the right to access, correct, export, or delete your personal data, to object to or restrict certain processing, and to lodge a complaint with your local data protection authority. To exercise these rights, email support@momentumtrackr.com. You can also delete your account at any time from Account Settings, which removes account-level data.

Security

We use industry-standard measures including encryption in transit (HTTPS), encryption at rest for stored account data, hashed passwords, scoped access controls, and audit logging. No system is perfectly secure; if we become aware of a breach affecting your data, we will notify you in line with applicable law.

Children

MomentumTrackr is not directed to children under 16 and we do not knowingly collect personal data from them. If you believe a child has provided us with personal data, contact us and we will delete it.

Changes to this policy

We may update this policy as the product and legal requirements evolve. Material changes will be communicated through the product or by email where appropriate. The "Last updated" date above reflects the current version.

Privacy philosophy

For the design rationale behind our privacy-first architecture — why we never connect to brokerages or link bank accounts — see our privacy story.

MomentumTrackr is operated by JSK Consulting, with John Smith Kristiansen as the legal sole business operator. Produced in Norway for investors tracking U.S. financial markets.