Privacy Policy

Last updated: January 2026

1. Introduction

5N6 LTD ("5N6 LTD", "we", "us", or "our") is a company registered in England and Wales. We are committed to protecting your privacy and handling your personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable data protection laws.

This Privacy Policy explains how we collect, use, store, share, and protect your personal data when you use the AISTRYX software application, our website (aistryx.com), and related services (collectively, the "Services").

Data Controller: 5N6 LTD is the data controller responsible for your personal data. For data protection queries, contact us at privacy@aistryx.tech.

2. Information We Collect

We collect the following categories of personal data:

2.1 Information You Provide Directly

  • Account Information: Name and email address when you purchase a licence or sign up for our newsletter
  • Payment Information: Billing address and payment card details (processed securely by Stripe; we do not store complete card numbers)
  • Communications: Information you provide when contacting support, submitting feedback, or responding to surveys
  • Marketing Preferences: Your newsletter subscription status and communication preferences

2.2 Information Collected Automatically

  • Device Information: Machine identifiers for licence activation (cryptographically hashed for privacy)
  • Usage Data: Anonymous usage statistics, feature usage patterns, and error logs to improve the Software
  • Technical Data: IP address, browser type, operating system, and device information when accessing our website

2.3 Information We Do Not Collect

AISTRYX operates locally on your device. We do not collect, access, or store: your broker credentials, broker API keys, portfolio data, financial positions, or any data exchanged with your broker. This information remains exclusively on your device.

3. Legal Basis for Processing

Under UK GDPR, we process your personal data based on the following legal grounds:

  • Contract: To perform our contract with you (delivering the Software, processing payments, providing support)
  • Legitimate Interests: For purposes that do not override your rights (improving our Services, preventing fraud, security)
  • Consent: For marketing communications and newsletter subscriptions (you may withdraw consent at any time)
  • Legal Obligation: To comply with applicable laws and regulations

4. How We Use Your Information

  • To provide, maintain, and improve the Software and Services
  • To process payments and deliver licence keys
  • To validate licence activations and prevent unauthorised use
  • To send transactional emails (purchase confirmations, licence details, product updates)
  • To send marketing communications and newsletters (where you have opted in)
  • To provide customer support and respond to enquiries
  • To analyse usage patterns and improve user experience
  • To detect, prevent, and address security issues or fraud
  • To comply with legal obligations

5. Newsletter and Marketing Communications

We offer a newsletter subscription service to keep you informed about product updates, market insights, and special offers.

  • Opt-in: You may subscribe to our newsletter via our website or during the purchase process
  • Opt-out: Every marketing email includes an unsubscribe link. You may also email us at privacy@aistryx.tech to unsubscribe
  • Transactional Emails: We will still send essential transactional emails (purchase confirmations, licence keys, security alerts) regardless of your marketing preferences

We maintain separate mailing lists for trial users and subscribers. Your subscriber type is recorded to ensure relevant communications.

6. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include:

  • Encryption of data in transit using HTTPS/TLS
  • Encryption of sensitive data at rest
  • Secure password hashing and authentication
  • Regular security assessments and updates
  • PCI-compliant payment processing via Stripe
  • Access controls limiting data access to authorised personnel

7. Third-Party Services

We use the following third-party services that may process your data:

  • Stripe: Payment processing (PCI DSS Level 1 certified). See Stripe's Privacy Policy
  • Supabase: Database hosting (EU-based servers). See Supabase Privacy Policy
  • SMTP Email Services: For transactional and marketing email delivery
  • Fasthosts: Website and application hosting (UK-based)

8. International Data Transfers

We primarily process your data within the United Kingdom and European Economic Area. Where data is transferred outside the UK/EEA (e.g., to Stripe's US servers), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the UK Information Commissioner's Office or the recipient's participation in approved certification schemes.

9. Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy:

  • Account Data: For the duration of your subscription and 7 years thereafter for legal and tax purposes
  • Payment Records: 7 years as required by UK tax law
  • Support Communications: 3 years from the last interaction
  • Newsletter Subscriptions: Until you unsubscribe or request deletion
  • Usage Analytics: Anonymised and aggregated data may be retained indefinitely

10. Your Rights Under UK GDPR

Under UK data protection law, you have the following rights:

  • Right of Access: Request a copy of the personal data we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data in certain circumstances
  • Right to Restrict Processing: Request limitation of how we use your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests or for direct marketing
  • Right to Withdraw Consent: Withdraw consent for consent-based processing at any time
  • Right to Lodge a Complaint: Complain to the Information Commissioner's Office (ICO) if you believe your rights have been violated

To exercise your rights, contact us at privacy@aistryx.tech. We will respond within one month. You may contact the ICO at ico.org.uk.

11. Cookies and Tracking

Our website uses essential cookies necessary for the site to function properly. These include:

  • Session Cookies: To maintain your login state and shopping cart
  • Security Cookies: To prevent cross-site request forgery

We do not use third-party advertising cookies or trackers. We may use basic analytics to understand website usage, which does not involve tracking individual users across sites.

12. Children's Privacy

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a minor, please contact us immediately.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or through our website. The "Last updated" date at the top indicates when the policy was last revised. Continued use of our Services after changes constitutes acceptance of the updated policy.

14. Contact Us

For privacy-related enquiries or to exercise your data protection rights, contact us at:

5N6 LTD

Data Protection Enquiries

Email: privacy@aistryx.tech

Website: aistryx.com