Legal

Privacy Policy

Last updated: June 2026  ·  Effective for all users of AlgoEdge

AlgoEdge is a PnL reporting and Telegram alert platform built for Tradetron strategy creators. This policy explains how Mana Studio ("we", "us") collects, uses, and protects your personal data in compliance with the Digital Personal Data Protection (DPDP) Act, 2023.

1. Data We Collect

  • Account information: name, email address, and password (stored as a secure hash).
  • Tradetron integration data: shared access codes you provide to connect your strategies.
  • Tradetron login credentials (Auto Token add-on only): if you enable the Auto Token feature, the Tradetron email and password you enter so we can log in on your behalf to regenerate broker tokens. These are encrypted at rest with AES-256-GCM and are never displayed back to you.
  • Broker credentials (Auto Token add-on only): the credentials each broker requires for token generation (such as API keys, client IDs, TOTP/PIN secrets, and token links). These are encrypted at rest with AES-256-GCM. You may delete them at any time from the Tradetron Account page.
  • Tradetron session data (Auto Token add-on only): the authenticated session captured when we log in as you is stored in encrypted form to perform token regeneration.
  • Telegram configuration: Chat IDs you enter for alert delivery.
  • Usage data: pages visited, features used, and session timestamps for service improvement.
  • Feedback and support messages you voluntarily submit.

2. How We Use Your Data

  • To authenticate your account and provide access to AlgoEdge features.
  • To fetch strategy PnL data from Tradetron using your shared access codes.
  • To log in to Tradetron on your behalf and automatically regenerate your broker token(s) — only if you have enabled the Auto Token add-on and explicitly provided your credentials for this purpose.
  • To deliver automated PnL alerts to your configured Telegram channel.
  • To communicate service updates, plan changes, and support responses.
  • To analyse aggregate usage patterns and improve the platform — no individual data is sold or shared for advertising.

3. Third-Party Services

  • Tradetron: Your shared access codes are used to retrieve strategy data from the Tradetron platform. Please review Tradetron's own privacy policy.
  • Telegram: Alert messages are delivered via the Telegram Bot API. Telegram's privacy policy applies to message delivery.
  • Microsoft Clarity: We use Microsoft Clarity for anonymised usage analytics and session replay to improve the product. Your dashboard's financial figures (PnL, capital, positions) are masked and are NOT captured in recordings. Microsoft's privacy policy applies; you can opt out via your browser's privacy / Do-Not-Track settings.
  • We do not sell, rent, or share your personal data with any third party for marketing or advertising purposes.

4. Data Retention

  • Your account data is retained as long as your account is active.
  • You may request deletion of your account and associated data by emailing manastudioofficial@gmail.com. Deletion is processed within 30 days.
  • Anonymised, aggregated usage statistics may be retained indefinitely for product analytics.

5. Your Rights (DPDP Act 2023)

  • Right to access: You may request a copy of the personal data we hold about you.
  • Right to correction: You may request correction of inaccurate data.
  • Right to erasure: You may request deletion of your personal data, subject to legal retention requirements.
  • Right to grievance redressal: If you have a concern about how we handle your data, contact our Data Protection Officer at manastudioofficial@gmail.com.
  • To exercise any of these rights, email us at manastudioofficial@gmail.com with the subject line 'Data Request'.

6. Data Security

  • Your AlgoEdge account password is hashed and never stored in plain text.
  • Tradetron and broker credentials provided for the Auto Token add-on are encrypted at rest using authenticated AES-256-GCM before they are written to the database — never stored in plain text, and never shown back to you after saving. The GCM authentication tag rejects any record that has been tampered with.
  • These credentials are only decrypted server-side at the moment a token regeneration runs, and are never transmitted to your browser or any third party.
  • Data is transmitted over HTTPS at all times.
  • Access to production databases is restricted to authorised personnel only.
  • While we take reasonable precautions, no system is completely secure. We encourage you to use a strong, unique password.

7. Cookies

  • AlgoEdge uses essential session cookies required for authentication. We also use Microsoft Clarity, which sets analytics cookies to measure usage and record anonymised sessions — with financial fields masked. We do not use advertising cookies.

8. Changes to This Policy

  • We may update this Privacy Policy from time to time. We will notify you of significant changes via email or a notice on the platform. Continued use of AlgoEdge after changes constitutes acceptance of the updated policy.

9. Contact

  • Data Controller: Mana Studio
  • Email: manastudioofficial@gmail.com
  • Website: https://www.manastudio.in