Privacy Policy

1. Overview

AtlasEQ provides professional equity research software that aggregates financial data from official regulatory sources. This Privacy Policy explains how we handle your personal information across our website (atlas-eq.com) and desktop application.

Data Controller

AtlasEQ is the data controller responsible for your personal data. We are established in France and subject to the General Data Protection Regulation (GDPR) and the French Data Protection Act (Loi Informatique et Libertés).

Supervisory Authority

Our supervisory authority is the French Data Protection Authority (CNIL - Commission Nationale de l'Informatique et des Libertés):

By using our services, you acknowledge that you have read and understood this policy. If you do not agree with our practices, please do not use our services.

2. Information We Collect

2.1 Information You Provide Directly

When you interact with AtlasEQ, you may provide:

• Account Information: Email address and password when creating an account
• Contact Form Submissions: Name, email, company name, and message content when contacting us
• Payment Information: Billing details processed securely through our payment provider (we do not store full payment card numbers)
• Support Communications: Information shared when requesting technical support

2.2 Information from the Desktop Application

The AtlasEQ desktop application processes financial data locally on your device. We collect minimal data from application usage:

• License Validation: Your account credentials to verify subscription status
• Error Reports: Anonymized crash reports and error logs (only with your consent)
• Feature Usage: Aggregated, anonymized statistics on feature usage to improve the product

Important: Your research notes, watchlists, and portfolio data are stored locally on your device. We do not have access to this information unless you explicitly share it with us for support purposes.

2.3 Information Collected Automatically (Website)

When you visit our website and consent to analytics cookies, we collect:

• Pages viewed and navigation paths
• Time spent on each page
• Referral source (how you found us)
• General geographic location (country/region level)
• Device type, browser, and operating system

3. How We Use Your Information

We use your information for the following purposes:

Service Delivery

• Create and manage your account
• Process subscriptions and payments
• Provide customer support and respond to inquiries
• Deliver software updates and security patches

Product Improvement

• Analyze aggregated usage patterns to improve features
• Identify and fix technical issues
• Develop new functionality based on user needs

Communication

• Send transactional emails (account confirmation, password reset, receipts)
• Notify you of important service updates or security issues
• Provide product announcements (you can opt out of non-essential communications)

Legal & Security

• Comply with legal obligations
• Protect against fraudulent or unauthorized activity
• Enforce our Terms of Service

4. Cookies & Analytics

4.1 Our Approach

We respect your privacy choices. When you first visit our website, you'll see a consent banner asking whether you accept analytics cookies. We only load tracking scripts if you explicitly consent.

4.2 Types of Storage We Use

Type	Purpose	Requires Consent
Local Storage	Remembers your cookie preference	No (essential)
Google Analytics	Website traffic analysis	Yes

4.3 Managing Your Preferences

You can change your cookie preferences at any time:

• Clear your browser's local storage to reset your consent choice
• Use browser settings to block third-party cookies
• Install browser extensions that block tracking scripts

4.4 Google Analytics

We use Google Analytics to understand website traffic. When enabled, Google may collect data according to their Privacy Policy. We have configured Google Analytics to:

• Anonymize IP addresses
• Disable data sharing with Google for advertising purposes
• Automatically delete user data after 14 months

5. Data Sharing

We do not sell your personal information. We share data only in these limited circumstances:

Service Providers

We work with trusted third parties who process data on our behalf:

• Payment Processing: Secure payment transactions
• Email Services: Transactional email delivery
• Cloud Infrastructure: Secure data hosting
• Analytics: Website traffic analysis (with your consent)

These providers are contractually obligated to protect your data and use it only for the services they provide to us.

Legal Requirements

We may disclose information if required by law, court order, or government request, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

Business Transfers

If AtlasEQ is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

6. Data Security

We implement industry-standard security measures to protect your information:

• Encryption of data in transit (TLS/SSL)
• Secure password hashing
• Regular security assessments
• Access controls limiting employee access to personal data
• Secure cloud infrastructure with reputable providers

While we take reasonable precautions, no system is completely secure. We cannot guarantee absolute security of your data.

7. Data Retention

We retain your personal information based on the following criteria:

• Account Data: Retained while your account is active, plus 30 days after deletion request
• Transaction Records: Retained for 7 years for tax and legal compliance
• Support Communications: Retained for 2 years to provide context for ongoing support
• Analytics Data: Automatically deleted after 14 months

You can request deletion of your personal data at any time (see Your Rights below).

8. Your Rights Under GDPR

As a data controller established in the European Union, we are committed to upholding your rights under the General Data Protection Regulation (GDPR). You have the following rights:

Right to Withdraw Consent

Where processing is based on your consent (such as analytics cookies), you have the right to withdraw consent at any time. Withdrawal does not affect the lawfulness of processing based on consent before its withdrawal.

Right to Lodge a Complaint

If you believe your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority. For AtlasEQ, the relevant authority is the CNIL (Commission Nationale de l'Informatique et des Libertés) in France. You may also lodge a complaint with the supervisory authority in your country of residence.

How to Exercise Your Rights

To exercise any of these rights, contact us at info@atlas-eq.com. We will respond within one month of receiving your request, as required by GDPR Article 12. This period may be extended by two further months where necessary, taking into account the complexity and number of requests.

We will verify your identity before processing your request. There is no fee for exercising your rights, except where requests are manifestly unfounded or excessive.

Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR Article 6:

• Contract Performance (Article 6(1)(b)): Processing necessary to provide our services, manage your account, and fulfill our contractual obligations
• Legitimate Interests (Article 6(1)(f)): Processing for product improvement, security, and fraud prevention, where our interests do not override your fundamental rights
• Consent (Article 6(1)(a)): Analytics cookies and optional marketing communications, which you can withdraw at any time
• Legal Obligation (Article 6(1)(c)): Processing required to comply with applicable laws, such as tax and accounting requirements

9. International Data Transfers

AtlasEQ is established in France and primarily processes personal data within the European Economic Area (EEA). Your data benefits from the protections of GDPR and French data protection law.

Transfers Outside the EEA

Some of our service providers (such as cloud infrastructure or analytics services) may process data outside the EEA. When we transfer personal data outside the EEA, we ensure appropriate safeguards are in place as required by GDPR Chapter V, including:

• Adequacy Decisions: Transfers to countries the European Commission has deemed to provide adequate data protection
• Standard Contractual Clauses (SCCs): EU-approved contractual terms that bind recipients to protect your data
• Additional Safeguards: Where necessary, supplementary measures to ensure equivalent protection

You may request information about the specific safeguards applied to transfers of your data by contacting us at info@atlas-eq.com.

Users Outside the EEA

If you access our services from outside the European Economic Area, please note that your data will be processed in accordance with GDPR and French law. By using our services, you acknowledge this processing.

10. Policy Updates

We may update this Privacy Policy periodically. When we make material changes:

• We will update the "Effective Date" at the top of this page
• For significant changes, we will notify you via email or a prominent notice on our website
• We encourage you to review this policy periodically

Continued use of our services after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy, want to exercise your data protection rights, or have concerns about our data practices, please contact us:

We aim to respond to all data protection inquiries within one month, as required by GDPR.

If you are not satisfied with our response, you have the right to lodge a complaint with the CNIL or your local data protection authority.