Privacy Policy

Effective date: 1 March 2026 · Last updated: March 2026

This Privacy Policy explains how Akontax, s.r.o. ("we", "us", "our") collects, uses, stores, and protects your personal data when you use MoatRadar (the "Service"). We are committed to protecting your privacy in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR) and applicable Slovak data protection law.

Data controller: Akontax, s.r.o., Nad studnou 289/15, 010 04 Hôrky, Slovak Republic · hello@moatradar.com

1. What Data We Collect

Category	Data collected	Source
Account data	Full name, email address, profile photo URL	Google OAuth (when you sign in)
Usage data	Search queries, asset types selected, investor framework chosen, filter settings, session activity	Your interactions with the Service
Payment data	Credit balance, purchase history, Stripe session references	Stripe (card details never stored by us)
Technical data	IP address, browser type, session identifier (cookie), approximate location	Automatically collected
Analytics data	Page views, click heatmaps, scroll depth, session recordings (anonymised)	Microsoft Clarity

2. Legal Basis for Processing

We process your personal data on the following legal bases under GDPR Article 6:

Contract performance (Art. 6(1)(b)) — to provide the Service, manage your account, and process payments
Legitimate interests (Art. 6(1)(f)) — to improve the Service, prevent fraud and abuse, and ensure security
Legal obligation (Art. 6(1)(c)) — to comply with applicable tax, accounting, and regulatory requirements
Consent (Art. 6(1)(a)) — for optional analytics cookies (Microsoft Clarity), which you may decline via browser settings

3. How We Use Your Data

To authenticate your identity and manage your account
To deliver AI-generated search results based on your selected criteria
To manage and deduct credits from your balance
To process payments and issue purchase confirmations via Stripe
To detect and prevent abuse, fraud, and unauthorised access
To analyse usage patterns and improve Service quality
To respond to your enquiries and support requests

4. Data Sharing & Third Parties

We do not sell your personal data. We share data only with the following processors, each bound by appropriate data processing agreements:

Processor	Purpose	Location
OpenAI, Inc.	AI query processing (search inputs only — no account data sent)	USA (adequacy via SCCs)
Stripe, Inc.	Payment processing	USA (adequacy via SCCs)
Google LLC	OAuth authentication	USA (adequacy via SCCs)
Microsoft (Clarity)	Anonymous usage analytics	USA (adequacy via SCCs)
Railway Corp.	Hosting infrastructure	USA (adequacy via SCCs)

Transfers to the USA are covered by Standard Contractual Clauses (SCCs) as per EU Commission Decision 2021/914.

5. Data Retention

Account data — retained for the duration of your account and up to 3 years after deletion, for legal compliance
Session data — automatically deleted after 7 days of inactivity
Payment records — retained for 10 years as required by Slovak accounting law (Act No. 431/2002 Coll.)
Analytics data — retained by Microsoft Clarity per their retention policy (up to 13 months)

6. Cookies

MoatRadar uses the following cookies:

Cookie	Purpose	Duration
`sid`	Session authentication and free-search tracking	7 days
Clarity cookies (`_clsk`, `_clck`)	Anonymous usage analytics	Up to 1 year

You can disable or delete cookies at any time through your browser settings. Disabling the sid cookie will prevent you from using authenticated features.

7. Your Rights (GDPR)

Under GDPR you have the following rights regarding your personal data:

Right of access (Art. 15) — request a copy of the data we hold about you
Right to rectification (Art. 16) — request correction of inaccurate data
Right to erasure (Art. 17) — request deletion of your data ("right to be forgotten")
Right to restriction (Art. 18) — request that we limit processing of your data
Right to data portability (Art. 20) — receive your data in a structured, machine-readable format
Right to object (Art. 21) — object to processing based on legitimate interests
Right to withdraw consent — withdraw consent for analytics cookies at any time

To exercise any of these rights, contact us at hello@moatradar.com. We will respond within 30 days. You also have the right to lodge a complaint with the Slovak Data Protection Authority (Úrad na ochranu osobných údajov SR) at dataprotection.gov.sk.

8. Security

We implement appropriate technical and organisational measures to protect your personal data, including: HTTPS encryption in transit, HttpOnly and SameSite session cookies, server-side input sanitisation, rate limiting, and regular security reviews. No system is completely secure, and we cannot guarantee absolute security.

9. Children

MoatRadar is not directed at children under 18. We do not knowingly collect personal data from minors. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify registered users of material changes by email. The effective date at the top of this page indicates when the latest version applies.

11. Contact & Data Controller

Akontax, s.r.o.
Nad studnou 289/15, 010 04 Hôrky, Slovak Republic
IČO: 44639678 · DIČ: 2022779154
Email: hello@moatradar.com