Privacy and data

What we collect

If you sign up: your email address. That is what magic-link sign-in needs to work, and it is the only personal data we keep about you. We do not ask for your name, address, phone, or anything else.

If you visit any page: anonymous page-view counts, country/city-level location, browser/device information, language, screen size, referrer, page URL, Core Web Vitals timings, outbound link clicks, and form-submit events. This is gathered by Cloudflare Web Analytics and Ahrefs Web Analytics without analytics cookies or persistent cross-site identifiers. Ahrefs says raw IP addresses are discarded and are not stored in its Web Analytics database or logs.

If you submit the sign-in form: a Cloudflare Turnstile bot-check briefly examines your IP and browser characteristics to distinguish humans from automated abuse. The pass or fail result is checked once and discarded.

When you load any page: Cloudflare records edge-server logs (IP address, request path, response status) for security and abuse monitoring. These are short-lived operational logs, not a profile of you.

We do not collect: your name, your address, your phone number, payment details (Stripe will handle billing when Pro launches), browsing history outside our site, ad identifiers, or analytics cookies.

If you join a Pro waitlist: your email address is stored in our self-hosted PostgreSQL database (Hetzner, Germany) so we can email you when Pro opens. We do not share or sell this list. Resend (already named below) handles the confirmation email. Every email contains a one-click unsubscribe link.

If you accept analytics in the cookie banner: PostHog records anonymous product-analytics events such as page views, clicks, navigation paths, and a small set of feature interactions. PostHog assigns a randomly generated identifier stored in a first-party cookie so we can stitch a single visit together. We do not link this identifier to your email or account. If you decline analytics, PostHog does not load at all and no PostHog cookie is set.

How we use it

Email: to send you the one-time login link, and to send service notices about your account if anything important changes. We do not send marketing emails.

Page-view and event counts: to understand which pages get traffic and which product links or forms are used so we can prioritize what to improve. Aggregate, not per-user.

Product analytics (PostHog, opt-in): to see funnels, navigation paths, and feature usage so we can fix friction and prioritize improvements. Pseudonymous: not linked to your email or account.

Anti-bot signals: to keep automated abuse off the sign-in form. Not retained.

Subscription status (planned, not yet active): once the $9 per month Pro tier launches, we store a Stripe customer ID and your subscription state so we know what features to grant you.

Cookies and local storage

Session cookie (NextAuth, names like authjs.session-token): keeps you logged in after you click a magic link. First-party, HTTP-only, expires when you sign out or after a period of inactivity. Strictly necessary.

CSRF cookie (authjs.csrf-token): prevents cross-site request forgery on the login form. First-party, short-lived, strictly necessary.

Cloudflare bot-management cookie (__cf_bm and similar): used by Cloudflare across its network to distinguish bots from humans. First-party to tickerstance.com, short-lived, treated as strictly necessary for security.

Theme preference (browser localStorage): remembers whether you picked light or dark mode. Stored in your browser only; never sent to our servers.

Consent record (browser cookie cc_cookie): remembers your cookie-banner choices so the banner does not reappear on every visit. First-party, set by the banner itself. Strictly necessary for honouring your preference.

PostHog analytics cookie (ph_*, opt-in only): set only after you accept analytics in the cookie banner. Stores a pseudonymous identifier so a single visit can be stitched together for funnel analysis. First-party. Cleared automatically if you change your preference to Reject.

We do not use: advertising cookies, conversion pixels, or cross-site trackers. Cloudflare Web Analytics and Ahrefs Web Analytics run without cookies and load on every visit; PostHog is the only cookie-setting analytics tool and only runs if you opt in.

Third parties we rely on

Hetzner Online GmbH (German hosting provider): runs the two servers that host TickerStance. The web server lives in their Falkenstein (FSN1) datacenter; the PostgreSQL database lives in their Nuremberg (NBG1) datacenter. Both inside Germany.

Cloudflare (DNS, edge CDN, Turnstile bot mitigation, Web Analytics): sits in front of the Hetzner web server. Processes IP addresses for routing and abuse prevention. Web Analytics is cookieless and anonymized. See Cloudflare's public privacy policy for full details.

Ahrefs Web Analytics (cookie-free site analytics): processes page URL, referrer, user agent, browser language, screen size, approximate location derived from IP address, and basic events such as outbound link clicks and form submissions. Ahrefs says raw IP addresses are discarded and are not stored in its Web Analytics database or logs.

PostHog (opt-in product analytics, EU cloud): only loads if you accept analytics in the cookie banner. Hosted in Frankfurt, Germany. Stores pseudonymous event data (page views, clicks, navigation paths) keyed by a randomly generated identifier, never linked to your email.

Resend (transactional email provider): sends the magic-link sign-in emails. Sees your email address only at the moment a sign-in link is dispatched.

Stripe (planned, not yet active): once Pro launches, Stripe handles all payments. We never see your card details, only a Stripe customer ID and subscription status.

Massive (market data) and FRED (US Federal Reserve macroeconomic data): we fetch market and macro data from these providers. Your activity on TickerStance is not shared with them.

Where your data is stored

If you have an account, your email and authentication metadata live on our self-hosted PostgreSQL server in the Hetzner NBG1 datacenter (Nuremberg, Germany). If you never sign up, we store nothing about you. The public dashboard works without an account.

Page requests terminate on our web server in the Hetzner FSN1 datacenter (Falkenstein, Germany), reached through the global Cloudflare network for DNS, TLS, and abuse mitigation.

Ahrefs processes Web Analytics data under its own service terms and privacy commitments. We do not store raw Ahrefs analytics events or IP addresses in TickerStance systems.

If you accept analytics, PostHog stores your event data on its EU cloud in Frankfurt, Germany. Retained per PostHog's default retention. We can issue deletion requests on your behalf.

When you request a magic link, your email is sent to Resend (a US provider) for that one delivery. The international transfer is covered by standard contractual clauses. Resend does not retain it beyond delivery diagnostics.

How long we keep it

Account email: for as long as your account exists. After account deletion we remove the record, typically within 30 days.

Cloudflare Web Analytics: aggregated metrics retained by Cloudflare per their policy, currently up to six months.

Ahrefs Web Analytics: analytics reports are retained by Ahrefs under its service terms and account settings; Ahrefs says raw IP addresses are not stored for Web Analytics.

PostHog (if you opted in): pseudonymous event data retained per PostHog's default retention. Cleared from your browser immediately if you change consent to Reject; deletion of stored events available on request to [email protected].

Cloudflare edge logs: short-lived operational logs, retained per Cloudflare's policy.

Anti-bot signals: not retained.

Email delivery records (Resend): a short delivery log is kept by Resend for diagnostics and is purged on their schedule.

Your rights

You have the right to access the data we hold about you, correct anything inaccurate, delete your account and all associated data, export your data in a machine-readable format, and object to processing.

To exercise any of these, email [email protected]. We respond within 30 days. If you are in the EU or EEA, you also have the right to lodge a complaint with your national data protection authority.

We do not sell your data. We do not share it with advertisers. There is no business model here that depends on your data leaving our servers.

Children

tickerstance is not directed at children under 16 and we do not knowingly collect data from them. If you believe a child has signed up, email [email protected] and we will delete the account.

Who is responsible

tickerstance is operated from Norway. Email [email protected] for any privacy question or data request. We reply within 30 days at the outside, usually faster.

Changes to this policy

We update this page when practices change and note the date below. We do not start collecting new categories of data without disclosing it here first. If a change materially affects you and you have an account, we email you.

Last updated: 25 May 2026.