Privacy Policy

How White Stallion AI handles your data.

Last updated: April 18, 2026

1. Data we do NOT collect

White Stallion AI is a client-side application. The following NEVER leaves your device:

• Portfolio amounts — your holdings, cost basis, profit/loss, total net worth
• Specific stock identifiers — ISIN numbers, DP-ID, folio numbers
• Personal financial records — insurance policy numbers, loan account numbers, bank details
• Broker credentials — we don't ask for login credentials to any broker
• Contact information in imported files — phone numbers, addresses within CAS/CSV files

All calculations (WSS scores, technicals, risk profile, strategy payoffs) run locally in your browser.

2. Anonymous usage analytics

We use PostHog (EU-hosted, GDPR-compliant) to understand how White Stallion is used in aggregate.

What we capture

• Event names — e.g., import_committed, tour_completed, stock_detail_opened
• Bucketed properties — e.g., holdings-count range (0, 1–10, 10–50, 50+), portfolio size bucket (≤5L, 5L–25L, 25L–1Cr, 1–5Cr, 5Cr+)
• Feature usage markers — which tabs you visit, how often you run AI queries, whether you use Strategy Lab
• Anonymous ID — a random UUID stored in your browser's localStorage. Not linked to any real-world identity.

What we do NOT capture

• Your name, email, or Google profile (except a hashed ID when you sign in with Google)
• Exact portfolio values — values are always bucketed
• Specific stock names paired with weights
• Any transaction amounts
• Content of your AI queries

Where it's stored

PostHog Cloud EU (Frankfurt, Germany). Data is processed in accordance with GDPR Article 28. You can request deletion any time by contacting whitestallionai@gmail.com.

How to disable

Open White Stallion → Settings → Analytics → toggle off. Once disabled, no events will be sent. Already-captured data can be deleted on request.

3. Google Sign-In (optional)

If you choose to sign in with Google:

• We receive your name, email, and profile picture from Google's OAuth response
• Your portfolio data is synced to your own Google Drive in a private app folder — not to our servers
• Signing out does not delete your Drive data (you control that through your Google account)

4. Third-party APIs

The app makes real-time requests to these services. No portfolio data is sent in these requests — only ticker symbols:

Service	Purpose	Data sent
Yahoo Finance	US stock prices	Ticker symbol
Upstox API	Indian stock prices + OHLCV	ISIN or symbol
mfapi.in	Mutual fund NAV lookup	Scheme code
Screener.in	Fundamentals (P/E, P/B, ROE)	Symbol
Anthropic API	AI responses (Ask Stallion)	Your query text + portfolio summary if opted in

5. Advertising

We use Google AdSense to display ads. AdSense may use cookies to serve relevant ads. You can manage ad personalization via Google Ads Settings.

6. Your rights (GDPR + DPDP Act)

• Right of access — request all data we hold about you
• Right of erasure — request deletion of your PostHog data and anonymous ID
• Right to object — opt out of analytics at any time
• Right of portability — your portfolio data is already exportable (it's in your browser's localStorage or your Google Drive)

To exercise any right, email whitestallionai@gmail.com. We'll respond within 30 days.

7. Cookies

White Stallion uses browser localStorage (not cookies) for its own state. AdSense and PostHog may set cookies as described above. PostHog's cookie usage can be disabled entirely by opting out of analytics in Settings.

8. Children's privacy

White Stallion is not directed at children under 18. If you are under 18, please do not use the service. If we become aware that personal data of a minor has been collected, we will delete it promptly.

9. Changes to this policy

We may update this policy. Material changes will be announced via in-app banner. The "Last updated" date at the top of this page always reflects the current version.

10. Contact

For any privacy question, email whitestallionai@gmail.com.