MSL.
ENRU
Buy

Legal

Privacy policy

Last updated: 2026-06-22

This policy explains what personal data MarketStructureLab ("MSL", "we") collects when you use marketstructurelab.com or purchase a subscription, why we collect it, where it lives, and what you can do about it.

1. What we collect

  • Email address: provided by you at checkout. Used for purchase confirmation, fulfillment, transactional updates, and renewal reminders.
  • TradingView username: provided by you at checkout. Used to grant access to indicators inside TradingView.
  • Payment metadata: received from Stripe after a successful charge. This includes card brand, last four digits, country, currency, and a Stripe customer ID. We never see full card numbers.
  • Subscription and access history: which packages you bought, when, and which indicators were granted.
  • Server logs: IP address, user agent, and timestamps for security monitoring and abuse prevention. Retained for up to 90 days unless an incident requires longer.
  • Anonymous usage analytics: aggregate page views, the referring website, approximate country, browser, and device type. Collected without cookies and not linked to your identity. We use this to see how many people visit and where they come from.

2. What we do not collect

  • We do not store full credit card numbers or CVV. Card data is handled directly by Stripe.
  • We do not use third-party advertising trackers, marketing pixels, or cross-site tracking. Our only analytics is cookieless, aggregate usage measurement (see section 8).
  • We do not build advertising profiles, sell your data, or trade it with other companies.
  • We do not track your location beyond country-level information inferred from the IP address.

3. Why we collect it

  • Contract: email and TradingView username are needed to deliver what you paid for.
  • Legal obligation: payment metadata is retained for tax and bookkeeping obligations.
  • Legitimate interest: server logs and Stripe metadata help us detect and prevent fraud and abuse; cookieless, aggregate usage analytics help us understand how many people visit and where they come from.

4. Where data lives (sub-processors)

We use a small set of trusted vendors to operate the Service. Each processes only the data it needs:

  • Supabase (EU region, London): stores account, subscription, payment, and fulfillment records.
  • Stripe: processes card payments. See the Stripe privacy policy.
  • Resend: sends transactional emails (purchase confirmations, fulfillment notices, renewal reminders).
  • Sentry (EU region): captures application errors. We avoid logging personal data into error reports.
  • Vercel: hosts the Site and processes server logs.
  • Umami (Umami Cloud, EU region): cookieless website analytics. Receives aggregate traffic data only, with no cross-site tracking.

5. Retention

  • Active subscription: as long as your subscription is active.
  • After cancellation: up to 6 years for tax, accounting, and dispute-handling purposes, or longer where law requires.
  • Server logs: up to 90 days, unless an open incident requires longer.
  • Usage analytics: aggregate, non-identifying statistics retained by our analytics provider; no individual visitor records are stored.
  • Banned accounts: we retain the minimum data required to enforce the ban (typically email and a redacted reason) for fraud-prevention purposes.

6. Your rights

Subject to applicable law, you can ask us to:

  • Provide a copy of the data we hold about you.
  • Correct inaccurate data.
  • Delete your data, except where we are legally required to retain it (for example, payment records).
  • Export your data in a portable format.
  • Restrict or object to processing in specific circumstances.

To exercise any of these rights, email support@marketstructurelab.com from the address on file. We respond within 30 days. EU and UK residents also have the right to complain to a data protection authority.

7. International transfers

Some sub-processors (Stripe in particular) may transfer data outside the EU. They operate under standard contractual clauses or equivalent safeguards approved by the relevant authority.

8. Cookies

We use a single first-party cookie for session continuity (so the checkout interstitial remembers you between page loads). For traffic analytics we use Umami, which is cookieless: it stores nothing on your device and builds no cross-site profile, so no analytics consent banner is required. We process this aggregate usage data under our legitimate interest in understanding site traffic. We do not set advertising cookies or marketing pixels.

9. Children

The Service is not directed at children under 18. We do not knowingly collect data from anyone under 18. If you believe a minor has provided us data, write to support and we will delete it.

10. Changes to this policy

We may update this policy. The "Last updated" date at the top reflects the current version. Material changes are communicated by email to active subscribers.

11. Contact

For any privacy question or data-subject request, write to support@marketstructurelab.com. See also our Terms of service and Refund policy.

Educational tool. Not financial advice. Trading involves risk.