Privacy Policy

The controller responsible for personal data processed through purepofo is Dr. Hazem Hamoudia Management Consulting, Munich, Germany.

For privacy-related questions, please contact support@purepofo.com.

This Privacy Policy explains how we collect, use, store, and protect personal data when you visit the website, create an account, use the platform, or contact us.

This may include your name, email address, login credentials, account preferences, and related profile information that you provide when using the service.

This may include billing details, subscription status, transaction references, and payment-related metadata. We do not store full payment-card details ourselves.

We may process IP address, browser type, device information, log data, pages viewed, and platform usage data needed to operate, secure, and improve the service.

If you contact us, we may process the information contained in your message, including support requests, feedback, and related correspondence.

If you choose to connect a broker account, we may process account identifiers, holdings, transaction history, and related data that are needed to provide the requested integration features.

We process data where this is necessary to create and manage accounts, provide subscriptions, operate platform features, and respond to service requests under Art. 6(1)(b) GDPR.

Where required, we rely on your consent, for example for optional marketing communications, optional cookies, or broker connectivity features that depend on your active authorization under Art. 6(1)(a) GDPR.

We may process data to comply with accounting, tax, security, and other legal obligations under Art. 6(1)(c) GDPR.

We may process data under Art. 6(1)(f) GDPR where necessary to keep the platform secure, prevent misuse, improve product performance, analyze service stability, and protect our legal interests, always taking your rights and interests into account.

We may share personal data with carefully selected service providers that help us operate the service, such as hosting, authentication, analytics, payment-processing, email, and infrastructure providers.

Where you choose to use broker connectivity or other integrations, relevant data may be exchanged with those providers to support the feature you requested.

We may disclose data where required by law, legal process, or regulatory request, or in connection with a merger, sale, restructuring, or similar business transaction.

If personal data is transferred outside the EEA, we use appropriate safeguards such as adequacy decisions or the European Commission’s Standard Contractual Clauses, where required.

We retain personal data only as long as necessary for the purposes described here, for contractual and support needs, and for mandatory legal retention duties. Billing and accounting records may need to be kept for longer periods under German law.

We use reasonable technical and organizational measures to protect personal data, including access controls, encryption where appropriate, secure infrastructure, and security monitoring.

We may use cookies or similar technologies to keep the service functional, understand usage patterns, and improve performance. Where consent is required for non-essential cookies or tracking technologies, we seek that consent through the relevant user interface.

You can also manage certain cookie settings through your browser or device settings, although doing so may affect some platform functionality.

When you choose to connect a broker account, you authorize us to access and process the data necessary to provide the relevant portfolio or trading-related feature that you have requested.

Broker integrations may rely on secure authentication protocols such as OAuth2. We do not store your broker login credentials where the integration uses token-based authorization.

You may disconnect a broker integration at any time. After revocation, we will stop further access to live broker data except where limited retention remains necessary for legal, accounting, or security reasons.

Depending on the circumstances, you may have rights of access, rectification, erasure, restriction, objection, and data portability under the GDPR.

Where we rely on consent, you may withdraw that consent at any time. This does not affect the lawfulness of processing that took place before withdrawal.

You also have the right to lodge a complaint with a competent data-protection authority, in particular in the EU member state of your habitual residence, place of work, or place of the alleged infringement.

If you have questions about this Privacy Policy or your personal data, please contact support@purepofo.com.

You may also lodge a complaint with the Bavarian Data Protection Authority (BayLDA), Promenade 18, 91522 Ansbach, Germany. Official contact information is available at lda.bayern.de.

We may update this Privacy Policy from time to time. Material changes will be published on this page and, where appropriate, communicated through the service or by email.