Privacy Policy
Your privacy matters. This policy explains what we collect, why, how it's used, and what control you have over it. We try to keep it short, in plain English, and free of dark patterns.
1. Who we are
Partner Pulse ("we", "us", "our") operates the website at partner-pulse-psi.vercel.app (the "Service"). For privacy questions email us at our contact page.
2. Information we collect
Information you provide
- Account information: when you sign up, we collect your email address and a bcrypt-hashed version of your password. We never store passwords in plaintext.
- Watchlist data: the stock ticker symbols you choose to follow, so we can sync them across your devices.
Information collected automatically
- Session cookie: an encrypted HttpOnly cookie named
pp_sessionthat keeps you signed in for up to 30 days. - Server logs: like most websites, our hosting provider (Vercel) records standard request logs including IP address, browser user-agent, and request paths. These are used for security and debugging and rotated regularly.
- Local browser storage: we use
localStorageto remember your watchlist (if signed out), your notification-alert preference, your cookie-banner dismissal, and a list of recently seen story IDs so we don't re-alert you about the same story.
Information we do not collect
- We do not run analytics or behavioral trackers.
- We do not sell or rent your data to anyone, ever.
- We do not require any personally identifying information beyond an email address.
3. How we use information
- To authenticate you and keep your session active.
- To sync your watchlist across devices.
- To send browser notifications for breaking partnership news (only if you explicitly opt in).
- To maintain, secure, and improve the Service.
4. Cookies
We use a single first-party cookie for authentication:
pp_session— encrypted, HttpOnly, Secure, SameSite=Lax, 30-day expiry. Required for sign-in functionality.
We do not use third-party tracking cookies. If we add advertising in the future, ad partners (such as Google AdSense) may set their own cookies; we will update this policy and re-prompt for consent at that time. You can disable cookies in your browser settings, but the sign-in feature will not work.
5. Third-party services
The Service relies on the following third parties:
- Vercel — hosting and edge network. See Vercel Privacy Policy.
- Neon — managed Postgres database where your account and watchlist are stored. See Neon Privacy Policy.
- Google News — public RSS feeds we read to surface partnership news. We do not send your personal data to Google News.
- Yahoo Finance — public market-data endpoints we read for live quotes. We do not send your personal data to Yahoo.
6. Data retention
Account and watchlist data is retained until you request deletion. Session cookies expire after 30 days of inactivity. Hosting logs are retained per Vercel's default schedule.
7. Your rights
Depending on where you live, you may have the right to access, correct, delete, or export your personal data, restrict or object to processing, and withdraw consent. To exercise any of these rights, contact us at our contact page and we will respond within 30 days.
EU/UK (GDPR): the legal basis for processing your account information is contract performance; for cookies, your consent.
California (CCPA/CPRA): we do not sell or share personal information.
8. Security
Passwords are hashed with bcrypt (10 rounds) before storage. Sessions are signed and encrypted with a 256-bit key. All traffic is served over HTTPS. While no online service can guarantee absolute security, we follow industry best practices.
9. Children
The Service is not directed to children under 13 and we do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it.
10. Changes
We may update this policy from time to time. Material changes will be reflected by updating the "Last updated" date below. Continued use of the Service after changes constitutes acceptance.
Last updated: April 20, 2026