Privacy Policy

1. INTRODUCTION

Taunusstar ("we," "us," "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our S&P 500 forecasting service at taunusstar.com.

2. LEGAL BASIS FOR PROCESSING

We process personal data based on:

• Consent (Art. 6(1)(a) GDPR): For analytics and marketing communications
• Contract (Art. 6(1)(b) GDPR): To provide our forecasting services
• Legitimate Interests (Art. 6(1)(f) GDPR): For service improvement and security
• Legal Obligations (Art. 6(1)(c) GDPR): To comply with applicable laws

3. DATA WE COLLECT

3.1 Information You Provide

• Account Information: Name, email address, password (for premium accounts)
• Payment Information: For premium subscriptions (processed by payment provider)
• Contact Information: When you contact us through our contact form

3.2 Automatically Collected Information

• Usage Data: Features used, timestamps, frequency of use, forecast views
• Technical Data: IP address, browser type, device information, operating system
• Cookies: Session cookies, preference cookies (see Cookie Policy)
• Analytics Data: Page views, time spent on site, referral sources

3.3 Financial Data

We collect and process market data, economic indicators, and financial metrics to generate our forecasts. This data is publicly available market information and does not include personal financial information.

4. HOW WE USE YOUR DATA

We use your data to:

• Provide S&P 500 forecasting services and market predictions
• Process payments for premium features
• Improve our AI models and forecasting accuracy
• Send service-related communications and updates
• Ensure platform security and prevent fraud
• Comply with legal obligations
• With consent, send marketing communications about new features
• Analyze usage patterns to improve user experience

5. DATA SHARING AND THIRD-PARTY PROCESSORS

5.1 Service Providers

We share data with carefully selected processors:

6. DATA SECURITY

We implement appropriate technical and organizational measures:

• Encryption in transit (TLS/SSL) and at rest
• Access controls and authentication
• Regular security audits and updates
• Employee data protection training
• Incident response procedures
• Pseudonymization where possible
• Secure API endpoints with rate limiting

7. DATA RETENTION

8. YOUR RIGHTS UNDER GDPR

You have the right to:

• Access (Art. 15): Obtain copies of your personal data
• Rectification (Art. 16): Correct inaccurate data
• Erasure (Art. 17): Request deletion ("right to be forgotten")
• Restriction (Art. 18): Limit processing in certain circumstances
• Portability (Art. 20): Receive your data in a portable format
• Object (Art. 21): Object to certain processing
• Withdraw Consent: At any time, without affecting prior processing
• Lodge a Complaint: With your local supervisory authority

To exercise these rights, contact: privacy@taunusstar.com

9. SPECIFIC CONSIDERATIONS FOR FINANCIAL DATA

9.1 Market Data Processing

10. CHILDREN'S PRIVACY

11. INTERNATIONAL DATA TRANSFERS

Some of our service providers may be located outside your country of residence. When we transfer your data internationally, we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses (SCCs)
• Adequacy decisions by the European Commission
• Binding corporate rules
• Certification schemes

12. CHANGES TO THIS POLICY

We may update this Privacy Policy to reflect:

• Changes in our data processing practices
• New legal requirements
• New features or services
• Improvements to our privacy practices

We will notify you of material changes through:

• A notice on our website
• Email notification (for registered users)
• Requesting renewed consent where required

13. CONTACT INFORMATION

For privacy-related inquiries: