Basis

Privacy Policy

Last updated: 20 May 2026

1. Who we are

Basis is a portfolio intelligence tool for Jamaican and Trinidadian investors operated from Kingston, Jamaica. This policy explains what data we hold about you and what we do with it.

Questions: support@basis.expert.

2. What we collect

  • Account data: email, display name, and (if you use Google sign-in) your Google profile name and avatar URL.
  • Portfolio data: holdings, prices, dividends, watchlists, alerts, and broker PDFs/CSVs you upload. This is the core of the product and is stored encrypted at rest.
  • Preferences: notification toggles, display currency, investment profile answers.
  • Usage data: page views and feature events used to debug and improve the product (no third-party ad trackers).

3. How we use it

  • To run the product (show your portfolio, send digests, etc.).
  • To generate personalised AI briefs and chat responses.
  • To send transactional emails (login alerts, dividend reminders, filing alerts) you can disable in Settings.
  • To debug crashes and monitor abuse.

We do not sell your data and we do not run third-party advertising trackers.

4. Third parties we share data with

  • Supabase — database, auth, and file storage.
  • Resend — transactional email delivery.
  • Lovable AI Gateway / model providers — chat, briefs, and statement parsing. Prompts include your portfolio snapshot; we do not share your email or auth identity with the model.
  • Stacks Markets — JSE pricing and corporate actions (no user data is sent).

5. Your rights

You can view, export (CSV), and delete your portfolio data from within the app. To delete your account entirely, email support@basis.expert and we will remove your account and associated data within 30 days.

Under the Jamaican Data Protection Act 2020 and Trinidad & Tobago Data Protection Act 2011, you have the right to access, correct, and request erasure of your personal data.

6. Security

Data is encrypted in transit (TLS) and at rest. Authentication uses Supabase Auth with row-level security on every table — meaning your data is technically isolated from other users at the database layer, not just the application layer.

7. Changes

We'll update this page when material changes happen and notify active users by email. Continued use after a change means acceptance of the new terms.

← HomeTerms of Service →