Privacy Policy

Last updated: April 4, 2026

1. Who We Are

BlitzTrade is operated by Johannes Antoni, Nadlerstr. 5, 69214 Eppelheim, Germany. For data protection inquiries, contact us at contact@blitztrade.io.

2. What Data We Collect

We collect only the minimum data necessary to provide our service:

Email address — provided when you sign up for early access. Used for account management, authentication (OTP login), and service-related communications.

We do not collect passwords (we use passwordless email-based authentication), trading data, financial information, or any data from your Interactive Brokers account. All trading data stays on your local machine.

3. Legal Basis for Processing (GDPR Art. 6)

Contract performance (Art. 6(1)(b)) — processing your email is necessary to create and manage your account and provide the service.
Legitimate interest (Art. 6(1)(f)) — sending transactional emails (OTP codes, account approvals) related to the service you signed up for.

4. Where Your Data Is Stored

Your email address is stored in AWS Cognito in the eu-central-1 (Frankfurt, Germany) region. Data does not leave the European Union. AWS acts as a data processor under a GDPR-compliant Data Processing Agreement (DPA).

5. Who Has Access to Your Data

Only the BlitzTrade operator has administrative access to user data. We do not sell, rent, or share your personal data with any third parties. Our infrastructure providers (AWS) process data solely on our behalf and under contractual obligations.

6. Data Retention

We retain your email address for as long as your account is active. If you request deletion, we will remove your data within 30 days. If you do not activate your account within 12 months, we will automatically delete it.

7. Your Rights (GDPR Art. 15–21)

Under the GDPR, you have the right to:

Access — request a copy of the data we hold about you
Rectification — correct inaccurate data
Erasure ("right to be forgotten") — request deletion of your data
Data portability — receive your data in a machine-readable format
Restriction — limit processing of your data
Objection — object to processing based on legitimate interest

To exercise any of these rights, email contact@blitztrade.io. We will respond within 30 days.

8. Cookies & Tracking

The BlitzTrade website does not use cookies, analytics trackers, or any third-party tracking scripts. No cookie consent banner is needed because no cookies are set.

9. Third-Party Services

AWS Cognito (eu-central-1) — user authentication
AWS SES (eu-central-1) — transactional emails (OTP codes, approval notifications)

10. Children

BlitzTrade is not intended for persons under the age of 18. We do not knowingly collect data from minors.

11. Changes to This Policy

We may update this policy from time to time. The "last updated" date at the top reflects the most recent revision. Material changes will be communicated via email to registered users.

12. Supervisory Authority

If you believe your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority. In Germany, you can contact the data protection authority of your federal state (Landesdatenschutzbeauftragter).