Privacy Policy
1. Introduction
FNOChain ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our option chain data platform.
By accessing or using FNOChain, you agree to the terms of this Privacy Policy. If you do not agree, please discontinue use immediately.
2. Information We Collect
2.1 Account Information: When you register, we collect:
- Username
- Email address
- Mobile number
- Password (encrypted/hashed, never stored in plain text)
2.2 Device & Technical Data: To enforce our security policies (including one-device-per-account binding), we collect:
- IP Address
- Browser User-Agent
- Device fingerprint (generated via browser characteristics)
- Geolocation data (Country, Region, City, ISP)
- Screen resolution, timezone, language preferences
2.3 Usage Data: We log:
- Login timestamps and history
- Pages accessed within the platform
- Session duration
2.4 Cookies: We use essential cookies for:
- Session management (PHP session cookie)
- Device identification (persistent device_id cookie)
- CSRF protection tokens
3. How We Use Your Information
We use the collected data for the following purposes:
- Authentication: To verify your identity and grant access to the platform.
- Security: To enforce single-session and device binding policies that prevent unauthorized account sharing.
- Geolocation: To monitor login locations for security auditing.
- Rate Limiting: To prevent brute-force attacks and abuse.
- Communication: To send account-related notifications (verification, password reset).
- Legal Compliance: To comply with applicable laws and regulations.
4. Data Sharing & Third Parties
We do NOT sell, rent, or trade your personal data. We share data only in these limited circumstances:
- ip-api.com: We use ip-api.com's free geolocation service to determine your approximate location (Country, City, ISP) based on your IP address. Their privacy policy is available at ip-api.com/docs/legal.
- Legal Obligations: If required by law, court order, or government regulation.
- Service Providers: We may engage trusted third parties to host our servers or provide infrastructure services.
5. Data Retention
- Account Data: Retained until you delete your account or it is terminated.
- Login History: Retained for up to 50 entries per user for security auditing.
- Device Binding Data: Retained until reset by admin or account deletion.
- Session Data: Automatically cleared upon logout or session expiry.
- Activity Logs: Automatically pruned after 1 hour of inactivity.
6. Your Rights
Under Indian data protection laws (IT Act 2000, DPDP Act 2023), you have the right to:
- Access the personal data we hold about you.
- Request correction of inaccurate data.
- Request deletion of your account and associated data.
- Withdraw consent for data processing.
- Lodge a complaint with the Data Protection Board of India.
To exercise these rights, contact us at [email protected].
7. Security Measures
We implement industry-standard security measures including:
- Password hashing using bcrypt (12 rounds)
- CSRF protection on all forms
- Rate limiting to prevent brute-force attacks
- HTTP-only, Secure, SameSite cookies
- Session regeneration on login
- Content Security Policy (CSP) headers
- IP-based blocking for repeated failed attempts
8. Children's Privacy
FNOChain is not intended for individuals under the age of 18. We do not knowingly collect data from minors.
9. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. Continued use of the platform after changes constitutes acceptance.
10. Contact Us
If you have questions about this Privacy Policy, contact us at:
📧 Email: [email protected]
🌐 Website: fnochain.com