← Back

Privacy Policy

Last updated: March 2026

Information We Collect

PrismOdds collects minimal data necessary to operate the service:

  • Authentication data: A session cookie to maintain your login state. No personal information, email addresses, or usernames are collected.
  • Usage data: Server logs may include IP addresses, request timestamps, and pages visited for security monitoring and rate limiting.
  • Paper trading data: Simulated trade positions you create are stored server-side to persist across sessions.

How We Use Your Data

  • To authenticate and maintain your session
  • To enforce rate limiting and prevent abuse
  • To provide the dashboard and its features
  • To monitor service health and security

Data Sharing

We do not sell, rent, or share your data with third parties. Data is only used internally to operate PrismOdds.

Cookies

We use a single session cookie (prismodds-session) to authenticate users. This cookie is:

  • HttpOnly (not accessible to JavaScript)
  • Secure (transmitted only over HTTPS)
  • SameSite=Strict (not sent with cross-origin requests)
  • Expires after 7 days

We do not use third-party analytics, tracking pixels, or advertising cookies.

Data Retention

Session data is retained for the cookie lifetime (7 days). Server logs are retained for up to 30 days. Paper trading data is retained indefinitely until manually cleared.

Security

We use industry-standard security measures including HMAC-signed session tokens, rate limiting, HTTPS enforcement, and security headers to protect your data.

Changes

We may update this policy from time to time. Continued use of the service after changes constitutes acceptance of the updated policy.