1. Who We Are
FnoDiary ("we", "our", "us") is an F&O trade journaling service available at fnodiary.in. We are not SEBI registered and do not provide investment advice. This Privacy Policy explains what data we collect, how we use it, and your rights over it.
For any privacy-related questions, contact us at support@fnodiary.in.
2. Data We Collect
2.1 Account Data
- Phone number — used as your unique account identifier. We do not collect email, name, or address unless you provide them voluntarily via support.
- Security question & answer — used for password reset. Stored as a hashed value.
- Password — stored as a bcrypt hash. We never store plaintext passwords.
- Referral code — generated on signup, used to track referrals and grant free access.
2.2 Broker Connection Data
- Dhan access token — you provide this to connect your Dhan account. It is stored encrypted in our database and used exclusively to: (a) read your F&O trade history, and (b) fetch historical candle data for chart rendering. We never use it to place, modify, or cancel orders.
- Dhan client ID — stored alongside the token to identify your Dhan account.
2.3 Trading & Journal Data
- Trade history — pulled from Dhan's API on your request (when you click Sync). Stored temporarily to power your journal, analytics, and discipline score.
- Psychology entries — text entries you write after sessions. Stored in encrypted cloud storage, linked only to your account.
- Shared charts — if you use the Share Chart feature, a JSON snapshot of that trade's chart data is stored in a public bucket. Only the data you explicitly choose to share becomes public.
2.4 Usage Data
- Page visit counts — anonymous hit counts per page, used only for internal analytics to understand which features are used most.
- We do not use third-party analytics tools (no Google Analytics, no Meta Pixel).
3. How We Use Your Data
| Data | Purpose |
|---|---|
| Phone number | Account identification, login, password reset |
| Dhan access token | Fetching your trades and candle data from Dhan's API |
| Trade history | Journal display, analytics, discipline score calculation |
| Psychology entries | Displaying your journal, linking entries to charts |
| Referral code | Tracking referral conversions, granting free access |
| Page hits | Internal product analytics (anonymous) |
We do not use your data for advertising, profiling, or any purpose beyond operating the FnoDiary service.
4. Data Storage & Security
All data is stored on Amazon Web Services (AWS) infrastructure in the ap-south-1 (Mumbai) region, keeping your data within India.
- User data is stored in Amazon DynamoDB with encryption at rest.
- Psychology entries and chart shares are stored in Amazon S3 with appropriate access controls.
- All data in transit is protected by TLS/HTTPS.
- Dhan access tokens are encrypted before storage.
- Passwords are hashed using bcrypt — we cannot recover your password.
5. Data Sharing
We do not sell, rent, or trade your personal data. We share data only in the following limited circumstances:
- Dhan's API — your access token is sent to Dhan's servers to retrieve your trade and candle data. This is the core function of FnoDiary.
- AWS — our infrastructure provider. Data is stored and processed on AWS. AWS's privacy practices are governed by AWS's Privacy Policy.
- Public chart shares — if you use Share Chart, the chart data you choose to share is accessible via a public link. No personal information (phone number, account details) is included in shared chart data.
- Legal requirements — if required by Indian law or valid legal process.
6. Data Retention
- Active accounts: Your data is retained as long as your account is active.
- Deleted accounts: Upon account deletion request, we permanently delete your account data, trade history, and psychology entries within 30 days.
- Public chart shares: Shared chart links remain accessible until you delete them from within the app or request deletion via support.
7. Your Rights
You have the right to:
- Access — request a copy of the data we hold about you
- Correction — request correction of inaccurate data
- Deletion — request deletion of your account and all associated data
- Portability — request your psychology entries and trade data in a machine-readable format
- Opt-out — disconnect your Dhan account at any time from the Broker settings page
To exercise any of these rights, email support@fnodiary.in. We will respond within 7 business days.
8. Cookies
FnoDiary uses only a single session cookie to keep you logged in (JWT stored in localStorage). We do not use tracking cookies, advertising cookies, or third-party cookies of any kind.
9. Children's Privacy
FnoDiary is intended for adults who trade F&O instruments. We do not knowingly collect data from anyone under 18. If you believe a minor has created an account, contact us and we will delete it promptly.
10. Changes to This Policy
We may update this policy as FnoDiary evolves. Material changes will be communicated via a notice on the site. The "Last updated" date at the top of this page reflects the most recent revision. Continued use of FnoDiary after changes constitutes acceptance.
11. Contact
For any privacy questions or requests: support@fnodiary.in
You can also reach us via the contact page.