Privacy policy
Last updated: January 24, 2026
Introduction
Nyria LLC ("Nyria," "we," "us," or "our") respects your privacy. This policy describes what is collected, how it is used, when it is shared, and how it is protected when you use the trade automation platform and related services (the "platform").
By using the platform, you consent to the practices described here. If you do not agree, do not use the platform.
1. What we collect
1.1 What you provide
- Account: name, email, password, registration details.
- Payment: billing address and payment method (handled by Stripe and other processors).
- Trading configuration: strategy settings, bot configurations, instruments, position sizing.
- Integration credentials: OAuth tokens, API keys, and access tokens for connected brokers and exchanges. TLS 1.2+ in transit; at-rest credential hardening in progress.
- Communication: support messages, feedback, and survey responses.
- Discord and Telegram: server IDs, channel IDs, and message content from channels you configure for alert monitoring.
1.2 Collected automatically
- Device: IP address, browser, operating system, device identifiers.
- Usage: pages visited, features used, actions taken, timestamps, session duration.
- Logs: server requests, responses, errors, and performance metrics.
- Trading activity: alerts received, orders placed, execution results, transaction history.
- Cookies: see the cookie policy.
1.3 From third parties
- Brokers: balances, positions, order status, and execution details from connected brokers.
- OAuth providers: profile information from Google, Discord, or other providers used to sign in.
- Payment processors: transaction status and billing confirmations from Stripe and others.
- Alert sources: webhook payloads, alert content, and metadata from TradingView, Discord, Telegram, and other connected services.
2. How your data is used
The data collected is used to:
- Run the platform: process alerts, execute trades, and manage your account.
- Bill: handle subscriptions and payments.
- Communicate: service notifications, security alerts, support responses, and important updates.
- Improve: analyze usage, diagnose issues, ship new features.
- Protect: detect and prevent fraud, abuse, and security threats.
- Comply: meet applicable laws, regulations, and legal processes.
- Analyze: generate aggregated, anonymized usage statistics.
- Market (opt-in): send promotional communications you can opt out of at any time.
3. Sharing and disclosure
Nyria does not sell your personal information. We may share it in the following circumstances:
3.1 Service providers
We share information with vetted service providers who help operate the platform. They are contractually bound to protect it and use it only for the purposes we specify. Categories include:
- Cloud infrastructure: hosting, storage, and compute.
- Payment processing: Stripe and other processors for subscription billing.
- Analytics: usage analytics and performance monitoring.
- Customer support: help desk and communication tools.
- Email: transactional and marketing delivery.
- Authentication: OAuth providers (Google, Discord) for sign-in.
- Security: fraud prevention and monitoring.
3.2 Connected services
When you connect a broker, exchange, or other third-party account, we transmit the data needed to execute trades and sync state. Those services are governed by their own privacy policies.
3.3 Legal requirements
We may disclose your information if required to do so by law, subpoena, court order, or other legal process, or if we believe in good faith that such disclosure is necessary to: (a) comply with legal obligations; (b) protect and defend our rights or property; (c) prevent fraud or illegal activity; (d) protect the safety of users or the public; or (e) protect against legal liability.
3.4 Business transfers
If Nyria is involved in a merger, acquisition, sale of assets, or bankruptcy, your information may transfer as part of that transaction. We will notify you of any such change and your choices.
3.5 Aggregated data
We may share aggregated, anonymized, or de-identified information that cannot reasonably identify you, for purposes including research, marketing, and analytics.
3.6 With your consent
We may share your information for other purposes with your explicit consent.
4. Security
TLS 1.2+ in transit; at-rest credential hardening in progress. Specifically:
- In transit: TLS 1.2 or higher between your browser, our services, and connected brokers.
- At rest: sensitive credentials (broker OAuth tokens, API keys) live in access-controlled databases. At-rest encryption and key rotation are in progress; until they ship, we do not represent those credentials as encrypted at rest.
- Access controls: least-privilege internal access with multi-factor authentication.
- Security reviews: regular assessments, penetration testing, and vulnerability scanning.
- Incident response: documented procedures for detection, response, and reporting.
- Employee training: recurring security training for all personnel with data access.
- Vendor management: security review of third parties that touch sensitive data.
No system on the public internet is 100% secure. We use commercially reasonable measures to protect your information, but cannot guarantee absolute security. You are responsible for keeping your account credentials safe.
4A. Financial data and broker credentials
4A.1 Broker OAuth tokens
When you connect a broker via OAuth, we receive and store an access token and refresh token. We do NOT receive or store your broker username, password, or security questions. TLS 1.2+ in transit; at-rest credential hardening in progress. Tokens grant only the permissions defined by each broker's OAuth scope, and you can revoke them at the broker at any time.
4A.2 API keys
For brokers that do not support OAuth, you provide an API key. TLS 1.2+ in transit; at-rest credential hardening in progress. Create keys with the minimum permissions (trading only, no withdrawal where possible) and rotate or revoke them immediately if you suspect compromise.
4A.3 Transaction data
We receive order data from your broker: status, fill prices, quantities, timestamps. It powers platform features, activity logs, and product improvements. Individual transaction data is not shared with third parties except as required by law.
4A.4 No access to funds
Nyria cannot withdraw funds, transfer securities, or initiate ACH/wire transfers. Access is limited to placing trades and reading account information. Your funds stay with your broker and are protected by your broker's controls and applicable regulatory protections (such as SIPC for securities).
4B. Breach notification
If a security breach affects your personal information, Nyria will:
- Notify affected users within 72 hours of discovery (or as required by applicable law).
- Describe the nature of the breach and the types of data affected.
- Explain steps taken to address it and prevent recurrence.
- Provide guidance on actions you can take to protect yourself.
- Notify relevant regulators as required by law.
If you believe your account is compromised, immediately: (1) change your Nyria password, (2) revoke broker authorizations from both Nyria and your broker, (3) review your broker account for unauthorized activity, and (4) email security@nyria.io.
5. Retention
Personal information is retained while your account is active or as needed to provide the service. Some categories are kept longer when required by law or for legitimate business purposes:
- Transaction records and trading history (compliance and audit).
- Communications and support tickets (service improvement).
- Anonymized or aggregated data (indefinitely, for analytics).
- Data needed to resolve disputes or enforce agreements.
After account deletion, backups may persist for a reasonable period; anonymized data may be kept indefinitely.
6. Your rights and choices
Depending on your location, you may have the following rights:
6.1 Access and portability
Request a copy of the personal information held about you in a structured, commonly used format.
6.2 Correction
Request correction of inaccurate or incomplete personal information.
6.3 Deletion
Request deletion of your personal information, subject to certain exceptions (such as legal retention requirements).
6.4 Opt out of marketing
Unsubscribe from marketing email at any time via the "unsubscribe" link or by contacting us.
6.5 Cookie preferences
Control cookies through your browser. See the cookie policy for details.
6.6 Do Not Track
We do not currently respond to "Do Not Track" browser signals.
To exercise these rights, email privacy@nyria.io. Identity verification may be required before a request is processed.
7. California privacy rights (CCPA/CPRA)
If you are a California resident, you have additional rights under the CCPA (as amended by the CPRA):
- Right to know: request the categories and specific pieces of personal information collected, used, and disclosed.
- Right to delete: request deletion, subject to certain exceptions.
- Right to correct: request correction of inaccurate personal information.
- Right to opt out of sale or sharing: Nyria does not sell personal information or share it for cross-context behavioral advertising. If that changes, an opt-out will be provided.
- Right to limit sensitive personal information: limit certain uses of sensitive personal information.
- Right to non-discrimination: no penalty for exercising your privacy rights.
To submit a CCPA/CPRA request, email privacy@nyria.io. Identity verification is required before processing. You may designate an authorized agent to act on your behalf.
7A. Other state privacy rights
Virginia (VCDPA)
Virginia residents may access, correct, delete, and obtain a copy of their personal data, and opt out of targeted advertising, sale, and profiling. Email privacy@nyria.io. You may appeal a decision by contacting us within 60 days.
Colorado (CPA)
Colorado residents may access, correct, delete, and obtain a portable copy of their personal data, and opt out of targeted advertising, sale, and certain profiling. Email privacy@nyria.io.
Connecticut (CTDPA)
Connecticut residents may access, correct, delete, obtain a copy of their data, and opt out of processing for targeted advertising, sale, or profiling. Email privacy@nyria.io.
Nevada
Nevada residents may opt out of the sale of personal information. Nyria does not currently sell personal information. If that changes, an opt-out will be provided. Email privacy@nyria.io with questions.
8. International data transfers
Nyria is based in the United States. If you access the platform from outside the U.S., your information may be transferred to, stored, and processed in the U.S. or other countries where our service providers operate.
Those countries may have data protection laws that differ from yours. By using the platform, you consent to the transfer.
Where required by law, appropriate safeguards are applied to international transfers, such as Standard Contractual Clauses approved by the European Commission.
9. European privacy rights (GDPR)
If you are in the EEA, United Kingdom, or Switzerland, you have additional rights under the GDPR:
- Legal basis: processing relies on contract performance, legitimate interests, consent, or legal obligations.
- Right to object: object to processing based on legitimate interests.
- Right to restrict: request restriction of processing in certain cases.
- Right to complain: file a complaint with your local data protection authority.
For GDPR inquiries, email the Data Protection Officer at dpo@nyria.io.
11. Children's privacy
The platform is not intended for users under 18. We do not knowingly collect personal information from anyone under 18. If we learn we have, we will delete it. If you believe a child under 18 has provided data to us, email privacy@nyria.io.
12. Third-party links and services
The platform may link to third-party sites and services. Nyria is not responsible for their privacy practices. Review their policies before you use them.
13. Changes to this policy
This policy may change to reflect new practices, technology, legal requirements, or other factors. When changes are material, we will:
- Update the "Last updated" date at the top of this page.
- Notify you by email or prominent notice on the platform.
- Provide a summary of key changes where appropriate.
Continued use of the platform after changes means you accept the updated policy.
14. Contact
Questions, concerns, or requests about this policy or our data practices:
- Email: privacy@nyria.io
- Data Protection Officer: dpo@nyria.io
- General contact: contact@nyria.io
- Address: Nyria LLC, 30 N Gould St, Sheridan, WY 82801
Privacy inquiries get a response within 30 days.