Early-bird ends in --d --: --: --
Orbit Analytics Orbit Analytics

Privacy Policy

1. Controller

The controller responsible for data processing on this website is Tom Löbel (see the Imprint for the full address).
Email: contact@tlfx.trading

2. Hosting & server logs

The website is hosted on Netlify (Netlify, Inc., USA). When you visit, your browser transmits technical data (IP address, date and time, requested page, referrer, user agent) which is processed to deliver the site securely. Legal basis: Art. 6(1)(f) GDPR (legitimate interest in a functioning, secure website).

3. The statistics tool & data delivery

The interactive tool runs in your browser. The free Nasdaq dataset is served as static files. Premium datasets and the account features are served by a Cloudflare Worker with object storage (R2), a key-value store (KV) and a database (D1) (Cloudflare, Inc., USA). Requests to the Worker process your IP address and the email/identifier associated with your session to deliver the data you are entitled to. Legal basis: Art. 6(1)(b) and (f) GDPR.

4. Account & passwordless sign-in

To access paid features you sign in with your email address using a one-time “magic link”. The link email is sent via Resend (Resend, Inc., USA). We store your email address, sign-in and subscription status. A login token is stored in your browser’s local storage to keep you signed in; you can remove it by logging out or clearing site data. Legal basis: Art. 6(1)(b) GDPR (performance of the contract) and Art. 6(1)(f) GDPR.

5. Payments & subscriptions

Subscriptions are processed by Stripe (Stripe, Inc., USA). When you subscribe, Stripe processes your payment and billing data directly under its own privacy policy; we receive only your email, subscription status and the plan you hold, which we store to grant access. Legal basis: Art. 6(1)(b) GDPR.

6. Device & sharing protection

To protect paid subscriptions against account sharing, the Worker records a coarse, non-identifying device fingerprint (derived from your browser and device characteristics) together with the IP, country, city and approximate location (an approximate latitude and longitude) of your requests, for a limited time. This is used only to detect and review unusual access patterns (for example the same account being used from far-apart places at once). Legal basis: Art. 6(1)(f) GDPR (legitimate interest in preventing abuse).

7. Discord (optional)

If you choose to connect your Discord account to receive a subscriber role, we process your Discord user ID and an OAuth token to apply and update that role via Discord’s Linked Roles feature (Discord Inc., USA). This happens only if you click “Connect Discord”. Legal basis: Art. 6(1)(a) GDPR (consent), withdrawable at any time by disconnecting.

8. Analytics

We use Pirsch (Pirsch Analytics, Germany), a privacy-friendly, cookieless analytics service that measures aggregate traffic without tracking individuals across sites. Legal basis: Art. 6(1)(f) GDPR.

9. Affiliate links

This site may contain affiliate links (e.g. to prop firms, brokers or tools). If you click one and sign up, the third party may set cookies or use tracking parameters to attribute the referral, under its own privacy policy. Orbit Analytics does not receive your personal trading data from these partners.

10. Reviews & testimonials

If you submit a review, we process the review text, your chosen display name, any screenshot you upload and your account email (the email is used only to verify eligibility and prevent duplicate submissions). Once approved, the review text, display name and screenshot may be published on the Service; your email address is never shown publicly. Screenshots are stored in object storage (Cloudflare R2). Legal basis: Art. 6(1)(a) GDPR (consent, given when you submit) and Art. 6(1)(f) GDPR. You can withdraw consent and have your review removed at any time at contact@tlfx.trading.

11. International transfers

Several processors above (Netlify, Cloudflare, Stripe, Resend, Discord) are based in the USA. Transfers are safeguarded by the EU-US Data Privacy Framework and/or the EU Standard Contractual Clauses, as applicable.

12. Retention

Account and subscription data is kept for as long as your account exists and as required by tax and commercial law thereafter. Server logs and sharing-protection records are kept only for a short period. Analytics data is aggregated.

13. Your rights

You have the right to access, rectification, erasure, restriction, data portability and objection under the GDPR, and the right to lodge a complaint with a supervisory authority. To exercise any of these, contact contact@tlfx.trading.