Privacy Policy

Last updated: April 2026

Your Data, Your Control

You can delete your account and all data at any time.

Encrypted & Secure

All data transmitted over HTTPS. Passwords hashed with bcrypt.

No Selling Data

We never sell your personal data to third parties.

1. Who We Are (Data Controller)

KISSvest is operated by 9th Dimension Digital Ltd, a private limited company registered in England and Wales. This privacy policy explains how we collect, use, and protect your personal information when you use our service at kissvest.com.

Company name: 9th Dimension Digital Ltd
Companies House number: 16733822
Country of incorporation: England and Wales
Registered office: 45 Kings Tower, Chelmsford, CM1 1GS, United Kingdom
Data protection contact: privacy@kissvest.com

2. Information We Collect

  • Account Information: Name, email address, and profile picture (if signing in with Google)
  • Portfolio Data: Holdings, transactions, and watchlist items you add or sync from your broker
  • Usage Data: Pages visited, features used, and performance metrics to improve the service
  • Payment Information: Processed securely by Stripe. We never store your card details.

3. How We Use Your Information

  • To provide and personalise the KISSvest service
  • To sync and display your portfolio data
  • To send important service updates and security alerts
  • To process payments and manage subscriptions
  • To improve the service through anonymised analytics

4. Broker Integration (SnapTrade)

When you connect a broker account, we use SnapTrade as an intermediary. We access your portfolio in read-only mode. We do not store your broker credentials. SnapTrade is SOC 2 Type II certified. You can disconnect your broker at any time from your account settings.

5. Data Sharing

We do not sell your personal data. We share data only with:

  • Stripe: For payment processing
  • SnapTrade: For broker portfolio syncing (when you opt in)
  • Google: For authentication (when you choose Google Sign-In)
  • Railway: Our hosting provider (EU/US servers)

6. Cookies

We use essential cookies for authentication and session management. We do not use third-party advertising cookies. Analytics cookies are anonymised and used only to improve the service.

7. Data Retention

We retain your data for as long as your account is active. When you delete your account, all personal data is permanently removed within 30 days. Anonymised analytics data may be retained indefinitely.

8. Your Rights (GDPR)

Under GDPR, you have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your account and all associated data
  • Export your data in a portable format
  • Withdraw consent for data processing
  • Lodge a complaint with a supervisory authority (ICO in the UK)

9. Security

All data is transmitted over HTTPS with TLS 1.3. Passwords are hashed using bcrypt. Database access is restricted and encrypted at rest. We conduct regular security reviews.

10. Contact

For privacy-related enquiries, contact our Data Protection Officer at privacy@kissvest.com or support@kissvest.com.