Privacy Policy

Ptolemy ("we", "us", or "our") is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard information about you when you use our website at ptolemy.cloud and the Ptolemy API platform (together, the "Service").

By using the Service, you agree to the collection and use of information as described in this policy. If you do not agree with the terms of this policy, please do not access or use the Service.

We collect information you provide directly to us when you create an account, set up a workspace, or contact us. This includes your name, email address, company name, and any other information you choose to provide.

We automatically collect certain information about your device and how you interact with the Service, including IP address, browser type, operating system, referring URLs, and pages viewed. We use cookies and similar tracking technologies for this purpose.

If you connect third-party data sources (such as Bloomberg or Refinitiv) through the Service, we may receive information about those connections as described in the relevant integration documentation.

We use the information we collect to provide, maintain, and improve the Service; to process transactions and send you related information; to respond to your comments, questions, and requests; and to send you technical notices and support messages.

We may use your information to send you marketing communications, including updates about new features, product announcements, and events. You can opt out of these communications at any time by following the unsubscribe instructions in any email we send or by contacting us at [email protected].

We do not sell your personal information to third parties, and we do not use your financial data or instrument data for any purpose other than providing the Service to you.

We take the security of your data seriously. The Service uses TLS/HTTPS for all data in transit and AES-256 encryption for data at rest. Access to production systems is restricted to authorised personnel and protected by multi-factor authentication.

We perform regular security audits and penetration testing. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

You are responsible for maintaining the confidentiality of your API credentials and access tokens. Please notify us immediately at [email protected] if you believe your credentials have been compromised.

We retain your personal information for as long as your account is active or as needed to provide the Service. If you close your account, we will retain your data for 30 days before permanently deleting it, giving you time to export any data you need.

We may retain certain information for longer periods where required by law, regulation, or to resolve disputes.

We use session cookies to maintain your authentication state and functional cookies to remember your preferences. We use analytics cookies (via privacy-respecting analytics tools) to understand how the Service is used in aggregate.

You can control cookies through your browser settings. Disabling cookies may affect certain features of the Service, including your ability to stay logged in.

We use a limited number of third-party service providers to help us operate the Service, including cloud infrastructure providers, email delivery services, and analytics tools. These providers are permitted to use your information only as necessary to provide services to us.

Our Service may contain links to third-party websites. We are not responsible for the privacy practices of those sites, and we encourage you to review their privacy policies.

The Service is operated from the United Kingdom. If you are accessing the Service from outside the UK or European Economic Area, your information may be transferred to and processed in the UK, which may have different data protection standards than your country of residence.

For users in the EEA, we rely on standard contractual clauses approved by the European Commission as a lawful mechanism for international transfers.

Depending on your jurisdiction, you may have the right to access, correct, update, or delete your personal information. You may also have the right to object to or restrict our processing of your information, or to request a portable copy of your data.

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days.

If you have questions about this Privacy Policy or our data practices, please contact us at [email protected] or by post at Ptolemy, London, United Kingdom.

If you are located in the EEA and believe we have not addressed your data protection concerns adequately, you have the right to lodge a complaint with your local supervisory authority.