Privacy Policy

We collect only what is necessary to provide the service:

• Email address — used to identify your account
• Trade records — instrument, date, entry/exit prices, P&L, and any notes you add
• Journal entries — pre/post analysis, emotions, mistakes, positives, and ratings
• Daily notes — text notes you write
• Account preferences — timezone, currency, starting balance, default risk

We do not collect browsing history, device fingerprints, or any data beyond what you explicitly enter.

Your data is used for one purpose: to provide the JRNL service to you. Specifically:

• Displaying your trades, journal entries, and analytics
• Calculating your P&L, win rate, and performance metrics
• Authenticating you when you sign in

All data is stored in Supabase, a managed PostgreSQL database platform hosted on AWS infrastructure. Row-level security (RLS) is enabled on every table — your data is cryptographically scoped to your user ID and cannot be accessed by other users or by JRNL staff without explicit action.

Data is encrypted at rest and in transit. Authentication is handled via Supabase Auth with industry-standard bcrypt password hashing.

JRNL uses a minimal set of third-party services to operate:

You are always in control of your data:

• Delete all trade and journal data from the Settings page at any time — no confirmation email required
• To delete your account entirely, email us at getjrnl@gmail.com and we will remove all your data within 7 days