Your data, plainly explained.

Account information. Email, name, and password hash when you sign up. If you sign in with Google OAuth, we also receive the profile name and avatar URL Google shares with us. We never see or store your Google password.

Portfolio data. Every asset, sale, and submission you enter, plus the acquisition cost, source, grade, notes, and any metadata your asset class uses. This is the product; we need it to render your portfolio.

Usage analytics. Page views, button clicks, feature-flag exposures, and aggregate session data through our analytics provider. Analytics events are intentionally stripped of dollar amounts, asset names, and any other value that could reconstruct your portfolio. We only send the shape of actions (e.g. “asset_added with asset_type=tcg_card”) so we can fix UX friction without leaking what you own.

Payment information. Our payment processor handles all billing. We receive the subscription status, plan ID, and billing period end, but we never see your card number, CVV, or billing address. Those live only inside the payment processor.

Inbound support email. When you email hello@altgems.io, the sender address, subject, and body land in our internal admin inbox. We keep the message only for the life of the support thread.

We do not sell your data. Ever. To anyone.

We do not run ad targeting on our users. We are not an ad-supported product.

We do not embed third-party ad networks, marketing pixels, or session-replay trackers (no FullStory, no Hotjar, no Facebook Pixel, no Google Ads). Our one behavioral analytics vendor uses first-party cookies only and is stripped of portfolio values.

We do not look at your portfolio data for our own purposes. Admin access to the production database is gated to one account and used only for incident response or when you explicitly ask for help with your own account.

Your portfolio lives in a managed PostgreSQL database hosted in a US region. The database uses row-level security so every query is scoped to your user id at the database level; an application bug can't expose another user's rows because the database itself refuses to return them. Backups are encrypted at rest and held for operational recovery only.

The app and marketing site run on a global edge network and serverless functions behind HTTPS in the same US region as the database.

Session cookies. Used to keep you signed in. These are strictly necessary and cannot be disabled while using AltGems.

Analytics cookies. Used to attribute anonymous events to a persistent visitor id so we can distinguish new vs. returning sessions. First-party only, no cross-site tracking.

Local storage. We store a small amount of UI state in your browser: the last known portfolio value (used as the offline PWA placeholder), recent command-palette searches, and the timestamp of your last “Refresh all prices” click.

We do not run any advertising or cross-site tracking cookies.

Export. Investor tier includes a Schedule D tax CSV and an insurance PDF. If you want a full raw export of every asset and sale row, email hello@altgems.io and we will produce a JSON dump within 30 days, regardless of your tier.

Correction. You can edit every asset, sale, and profile field from your dashboard. If a computed field looks wrong (basis, gains, confidence) email us and we will investigate.

Deletion. Settings → Danger zone → Delete account removes your profile and portfolio permanently. A 30-day operational retention window exists for backup recovery; after that the data is unrecoverable.

If you are a California, EU, or UK resident, the relevant local privacy laws (CCPA/CPRA, GDPR, UK GDPR) apply to the above rights. Email us to exercise them.

Active account: we keep your data for as long as you have an account.

Deleted account: portfolio and profile data is purged within 30 days. Anonymized, aggregated analytics (event counts by feature) may persist indefinitely because they can no longer be linked to you.

Support email: retained for 12 months from the last message in the thread, then deleted.

AltGems is not directed at anyone under 18 and we do not knowingly collect personal data from minors. If you believe a minor has provided us data, email hello@altgems.io and we will delete the account.

We may update this policy when we change third-party processors, change what we collect, or adjust how we handle your rights. Material changes are announced at least 14 days before they take effect, via email to your account address. The “Last updated” date at the top of this page always reflects the current revision.

Questions, requests, or privacy complaints: email hello@altgems.io. We respond within 24 hours.

Related documents: Terms of Service · Help · Support