Privacy Policy

Last updated: July 6, 2026

This policy explains what data Nortis collects, why, and what we do with it. The short version: we collect the minimum needed to run the service, we don't run ads, and we never sell your data.

1. What we collect

  • Account data — your email address and a hashed password, stored by our authentication provider (Supabase).
  • Watchlist data — the tickers you choose to follow and your alert preferences.
  • Telegram chat ID — if you link Telegram, we store the numeric chat identifier needed to deliver alerts. We never see your Telegram password or contacts.
  • Billing data — if you subscribe to Pro, payment is processed entirely by Stripe. We never see or store your card number; we keep only a Stripe customer reference and subscription status.

2. What we don't do

  • We don't sell or rent your personal data to anyone.
  • We don't run advertising or ad-tracking scripts.
  • We don't share your watchlist with third parties.

3. Processors we rely on

Nortis runs on Vercel (hosting), Supabase (database and authentication), Anthropic (AI summarization of public filing data — no personal data is sent), Telegram (alert delivery), and Stripe (payments). Each processes data only as needed to provide their part of the service.

4. Cookies

We use essential cookies only — session cookies that keep you signed in. There are no third-party tracking cookies. See the Cookie Policy for details.

5. Retention and deletion

Account data is kept while your account is active. You can request deletion at any time by contacting support; deleting your account removes your profile, watchlist, and notification history. Filing data itself is public regulatory information and is retained as part of the service.

6. Your rights

Depending on your jurisdiction (including GDPR and UK GDPR), you may have the right to access, correct, export, or erase your personal data. Email support@nortis.co.uk and we will respond within 30 days.