Back to Home

Privacy Policy

Last updated: January 27, 2026

1. Introduction

At Tamtech Ai, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, and safeguard your data when you use our platform.

2. Information We Collect

Account Information

  • • Email address (required for account creation)
  • • First name and last name
  • • Phone number
  • • Country and address (optional)

License Keys

  • • License key codes for service activation
  • • Purchase transaction records
  • • Credit usage history

Technical Data

  • • IP address for security and rate limiting
  • • Browser type and version
  • • Device information
  • • Usage analytics and error logs

3. How We Use Your Information

  • Account Management: To create and manage your user account
  • Service Delivery: To provide access to AI analysis features and license key validation
  • Security: To protect against fraud, abuse, and unauthorized access
  • Communication: To send important service updates and respond to inquiries
  • Platform Improvement: To analyze usage patterns and improve our services

4. Data Protection and Security

🔒 Enterprise-Grade Security Architecture

We have recently upgraded our authentication system to meet modern enterprise security standards. Your data is protected by multiple layers of security designed to prevent unauthorized access and cyber attacks.

  • HttpOnly Secure Cookies: We use httpOnly, Secure, and SameSite cookies for authentication - these cannot be accessed by JavaScript, protecting you against XSS (Cross-Site Scripting) attacks
  • End-to-End Encryption: All data is encrypted in transit (HTTPS/TLS) and at rest on our servers
  • CSRF Protection: SameSite cookie attributes prevent Cross-Site Request Forgery attacks
  • No Sensitive Data in Client Storage: We never store authentication tokens or credit information in browser localStorage (eliminated XSS vulnerability)
  • Access Controls: Strict role-based access controls and regular security audits
  • Continuous Monitoring: Real-time security monitoring and automatic security updates
  • Data Minimization: We only collect and retain information necessary for service delivery

✅ OWASP Compliance: Our security measures align with OWASP Top 10 security standards and GDPR requirements.

5. Information Sharing & Data Protection

🛡️ Your Data Stays Private

We do NOT sell, trade, rent, or share your personal information with third parties for marketing purposes. Your financial data, stock analysis history, and account information remain 100% confidential.

  • Zero Data Sales: We never sell your data to advertisers, marketers, or data brokers
  • No Third-Party Marketing: Your email and contact information are never shared with external marketing platforms
  • Financial Data Protected: Stock analysis results and trading insights remain private to your account
  • Legal Compliance Only: Data may only be disclosed if legally required by court order or regulatory authority
  • Anonymous Analytics: Google Analytics data is anonymized and cannot identify individual users

Enterprise Standards: Our data protection practices meet enterprise-grade security standards comparable to major financial institutions.

6. Cookies and Browser Storage

How We Use Cookies and Browser Storage

We use cookies and browser storage to deliver a secure, personalized experience. You can control analytics cookies via our Cookie Consent Banner, but authentication cookies are essential for the platform to function.

🔒 Authentication Cookies (Strictly Necessary)

We use httpOnly, Secure cookies to manage your login sessions and credit balance. These cookies are essential for the website to function and cannot be disabled.

  • Cookie Name: access_token
  • Purpose: Secure session management, user authentication, credit tracking
  • Duration: 7 days (auto-renewed on activity)
  • Security Features:
    • httpOnly: Cannot be accessed by JavaScript (XSS protection)
    • Secure: Only transmitted over HTTPS
    • SameSite=Lax: Prevents CSRF attacks
  • GDPR Classification: Strictly Necessary (exempt from consent under GDPR Article 6(1)(b))

Why These Cookies Are Always Active: Authentication cookies are required to identify you, maintain your login session, and track your credit balance. Without them, you would need to re-login on every page and the platform could not function.

📊 Google Analytics (GA4) - Optional

We use Google Analytics 4 (GA4) to understand how visitors use our platform and improve user experience. This is optional and you can manage your preference via the Cookie Consent Banner.

  • Cookie Names: _ga, _gid, _ga_6DD71GL8SC
  • Purpose: Anonymous usage analytics, site performance monitoring, feature improvement
  • Duration: Up to 2 years
  • Third Party: Google LLC (data may be transferred to US servers under Standard Contractual Clauses)
  • Your Control: Accept or reject analytics cookies via our Cookie Consent Banner
  • Data Collected: Page views, session duration, device type, general location (city-level)
  • No Personal Data: GA4 does NOT collect your name, email, or credit balance

Opt-Out Options:
1. Reject analytics cookies in our Cookie Consent Banner
2. Use the Google Analytics Opt-out Browser Add-on
3. Enable "Do Not Track" in your browser settings

💾 Browser Local Storage (Functional)

We use browser localStorage for non-sensitive functional data only:

  • Language preference: Your selected language (localStorage: lang)
  • Guest trial counter: Remaining free analyses for non-logged users (localStorage: guest_trials)
  • Analysis cache: Temporary AI report data (localStorage/sessionStorage: analysis_result)
  • Cookie consent: Your analytics cookie preference (localStorage: tamtech_cookie_consent)

⚠️ Important Security Note: We do NOT store authentication tokens, passwords, or credit card information in localStorage. All sensitive authentication data is securely stored in httpOnly cookies that JavaScript cannot access.

🗑️ Data Retention & Deletion

  • Authentication cookies: Automatically deleted when you log out or after 7 days of inactivity
  • Session data: Cleared when you close your browser
  • Analytics cookies: Managed via Cookie Consent Banner (can be deleted anytime)
  • localStorage items: You can clear all browser data in browser settings at any time
  • Cookie consent: Stored for 1 year to remember your preference

7. Data Retention

We retain your personal information only as long as necessary to provide our services and comply with legal obligations. Account data is retained while your account is active and for a reasonable period after account closure for legal and regulatory purposes.

8. Your Rights

You have the following rights regarding your personal data:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your personal data
  • Portability: Request transfer of your data

9. Children's Privacy

Our service is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. Your continued use of our service after any changes constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us through our support channels.