Last Updated: July 2025
Effective Date: July 2025

  1. Introduction

This Cookie Policy explains how ExtrovertVIX Trading ("we," "us," or "our") uses cookies and similar tracking technologies in our Golden Spikes mobile application and related web services. This policy should be read alongside our Privacy Policy and Terms of Service.

  1. What Are Cookies and Similar Technologies

2.1 Cookies

Cookies are small text files stored on your device when you visit websites or use applications. They help us recognize your device and remember information about your visit.

2.2 Similar Technologies

We also use similar technologies including:

Local Storage: Data stored locally on your device by our mobile app Session Storage: Temporary data that expires when you close the app Device Identifiers: Unique identifiers assigned to your mobile device SDK Data Collection: Information collected by third-party software development kits Analytics Tokens: Identifiers used for tracking app usage and performance

2.3 Mobile App Context

In our mobile application, these technologies primarily consist of:

  • Firebase Analytics data collection
  • Local app preferences and settings
  • Authentication tokens and session management
  • Push notification registration tokens
  • Crash reporting and performance monitoring data
  1. Types of Cookies and Technologies We Use

3.1 Essential Technologies

Purpose: Required for basic app functionality Examples:

  • Authentication session management
  • User login state preservation
  • App security features
  • Payment processing session data

Legal Basis: Legitimate interest (necessary for service provision) Duration: Session-based or until logout Can be disabled: No (would prevent app functionality)

3.2 Analytics and Performance

Purpose: Understanding app usage and improving performance Examples:

  • Firebase Analytics data
  • App crash reporting
  • Feature usage statistics
  • Performance monitoring

Legal Basis: Legitimate interest / Consent (where required) Duration: Up to 26 months Can be disabled: Yes (through app settings)

3.3 Functional Technologies

Purpose: Enhancing user experience and personalization Examples:

  • User preference settings
  • Notification preferences
  • Trading signal history
  • App theme and customization

Legal Basis: Legitimate interest / Consent Duration: Until manually cleared or account deletion Can be disabled: Partially (some preferences are essential)

3.4 Marketing and Targeting (Limited Use)

Purpose: Improving service relevance and user engagement Examples:

  • User engagement tracking
  • Feature adoption analysis
  • A/B testing data

Legal Basis: Consent Duration: Up to 12 months Can be disabled: Yes (opt-out available)

  1. Third-Party Technologies

4.1 Firebase (Google)

Services Used:

  • Firebase Authentication
  • Firebase Analytics
  • Firebase Cloud Messaging
  • Firebase Crashlytics
  • Firebase Performance Monitoring

Data Collected:

  • Device information and identifiers
  • App usage statistics
  • Crash reports and performance data
  • User engagement metrics

Privacy Policy: https://policies.google.com/privacy Opt-out: Limited (some services essential for app function)

4.2 Tawk.to Live Chat

Services Used:

  • Live chat functionality
  • Customer support interactions

Data Collected:

  • Chat session data
  • Device and browser information
  • IP address and location data

Privacy Policy: https://www.tawk.to/privacy-policy/ Opt-out: Don't use live chat feature

4.3 Email Service Providers

Services Used:

  • Account verification emails
  • Subscription notifications
  • Support communications

Data Collected:

  • Email delivery statistics
  • Open and click tracking
  • Device information

Opt-out: Unsubscribe from non-essential emails

  1. Legal Basis for Processing

5.1 GDPR Compliance (EU Users)

Legitimate Interest:

  • Essential app functionality
  • Security and fraud prevention
  • Service improvement and optimization

Consent:

  • Non-essential analytics
  • Marketing communications
  • Optional feature enhancements

Contract Performance:

  • User authentication
  • Subscription management
  • Service delivery

5.2 Other Jurisdictions

For users outside the EU, we rely on:

  • Legitimate business interests
  • User consent where required by local law
  • Legal compliance obligations
  1. Your Cookie Choices and Controls

6.1 Mobile App Settings

You can control certain technologies through:

App Settings Menu:

  • Analytics data sharing preferences
  • Crash reporting opt-out
  • Performance monitoring preferences
  • Marketing communication preferences

Device Settings:

  • App-level data permissions
  • Notification preferences
  • Location services control

6.2 Account Settings

Through your user account, you can:

  • Manage notification preferences
  • Control data sharing settings
  • Adjust privacy preferences
  • Delete account and associated data

6.3 Third-Party Controls

Google/Firebase:

  • Google Ad Settings: https://adssettings.google.com
  • Google Privacy Controls: https://myaccount.google.com/privacy
  • Android Advertising ID reset

Device-Level Controls:

  • Android: Settings > Privacy > Ads > Reset advertising ID
  • iOS: Settings > Privacy & Security > Apple Advertising > Reset Advertising Identifier
  1. International Data Transfers

7.1 Data Processing Locations

Your data may be processed in:

  • United States: Firebase/Google Cloud services
  • European Union: Data backup and redundancy
  • Other regions: Where required for service provision

7.2 Transfer Safeguards

We ensure appropriate protections through:

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions by relevant authorities
  • Vendor privacy certifications and compliance programs
  1. Data Retention Periods

8.1 Retention Schedule

Session Data: Until app session ends Authentication Tokens: Until logout or expiration Analytics Data: Up to 26 months (Firebase default) User Preferences: Until account deletion Crash Reports: Up to 90 days Marketing Data: Up to 12 months or until opt-out

8.2 Automatic Deletion

We automatically delete:

  • Expired session tokens
  • Old crash reports and logs
  • Inactive user data (after 3 years)
  • Opted-out marketing data
  1. Security Measures

9.1 Data Protection

We protect cookie and tracking data through:

  • Encryption in transit and at rest
  • Access controls and authentication
  • Regular security audits and monitoring
  • Secure data processing environments

9.2 Third-Party Security

Our third-party providers implement:

  • Industry-standard security measures
  • Regular security certifications
  • Compliance with data protection regulations
  • Incident response procedures
  1. Children's Privacy

10.1 Age Restrictions

Our app is not intended for users under 18. We do not knowingly:

  • Collect data from minors
  • Use tracking technologies for users under 18
  • Target advertising to children

10.2 Parental Rights

If we discover data collection from a minor:

  • We will delete the data immediately
  • We will terminate the account
  • We will notify parents/guardians if required
  1. Updates to This Policy

11.1 Policy Changes

We may update this Cookie Policy to reflect:

  • Changes in our data practices
  • New technologies or features
  • Legal or regulatory requirements
  • Industry best practices

11.2 Notification Methods

We will notify you of material changes through:

  • In-app notifications
  • Email notifications (if applicable)
  • Updated policy posted on our website
  • Prominent notices in the app

11.3 Continued Use

Your continued use of the app after policy updates constitutes acceptance of the revised policy.

  1. Your Rights

12.1 Access and Control Rights

You have the right to:

  • Access: Know what data we collect through cookies
  • Correct: Update incorrect information
  • Delete: Request deletion of your data
  • Port: Receive a copy of your data
  • Object: Opt-out of certain data processing
  • Restrict: Limit how we process your data

12.2 Exercising Your Rights

To exercise these rights:

  1. Email: privacy@extrovertvix.com
  2. Subject Line: "Cookie/Data Rights Request"
  3. Include: Your account information and specific request
  4. Response Time: Within 30 days
  1. Contact Information

13.1 Privacy Questions

General Privacy Inquiries:

  • Email: privacy@extrovertvix.com
  • Response Time: Within 48 hours

13.2 Data Protection Officer (GDPR)

For EU-related inquiries:

  • Email: dpo@extrovertvix.com
  • Jurisdiction: European data protection matters

13.3 Technical Support

For app-related cookie settings:

  • Email: support@extrovertvix.com
  • Live Chat: Available in the app
  • Response Time: Within 24 hours
  1. Complaints and Regulatory Contact

14.1 Internal Complaints

If you're not satisfied with our response to your privacy concerns:

  1. Email our Privacy Officer at privacy@extrovertvix.com
  2. Include "Privacy Complaint" in the subject line
  3. Provide detailed information about your concern
  4. We will investigate and respond within 30 days

14.2 Regulatory Authorities

EU Users: You may lodge a complaint with your local Data Protection Authority Other Jurisdictions: Contact your local privacy regulator List of EU DPAs: https://edpb.europa.eu/about-edpb/board/members_en

  1. Additional Resources

15.1 Related Policies

15.2 External Resources

  • Google Privacy Policy: https://policies.google.com/privacy
  • Tawk.to Privacy: https://www.tawk.to/privacy-policy/
  • Digital Advertising Alliance: http://optout.aboutads.info/

15.3 Industry Information

  • IAB Cookie Guide: https://www.iab.com/
  • GDPR Guidelines: https://gdpr.eu/
  • Mobile Privacy Best Practices: Industry-standard guidelines
  1. Consent Management

16.1 Initial Consent

When you first use our app:

  • Essential technologies are activated automatically
  • You may be asked to consent to optional analytics
  • You can modify preferences at any time
  • Clear information is provided about each technology type

16.2 Ongoing Consent Management

You can always:

  • Review your current consent settings
  • Withdraw consent for non-essential technologies
  • Update preferences as needed
  • Request information about data processing

16.3 Withdrawal of Consent

To withdraw consent:

  1. Use in-app privacy settings
  2. Contact our privacy team
  3. Use third-party opt-out tools
  4. Adjust device-level settings

Note: Withdrawing consent may affect app functionality but will never prevent access to core trading features.

Effective Date: This Cookie Policy is effective as of July 2025 and applies to all users of the ExtrovertVIX Golden Spikes mobile application.

Contact: For any questions about this Cookie Policy, please contact us at privacy@extrovertvix.com

This Cookie Policy is designed to comply with applicable privacy laws including GDPR, CCPA, and other regional privacy regulations.