HELM is a market-analysis research platform for cryptocurrency perpetual futures. References to “HELM”, “we”, “us”, or “our” in this policy refer to the operators of this platform. If you have questions about this policy, contact us at the address listed in Section 7.
We collect only what is necessary to provide and improve the service:
helm_session. This cookie is used solely to authenticate your requests and expires after 30 days.We do not collect payment information during the private beta. We do not collect trading account credentials, positions, or portfolio data from any exchange.
HELM sets one cookie: helm_session. It is an HTTP-only cookie, meaning it is inaccessible to JavaScript, and is marked Secure so it is only transmitted over HTTPS. It contains a signed JWT that identifies your account session. No third-party advertising or tracking cookies are set by HELM.
If you enable browser push notifications, your browser's Notification API stores permission state locally. We record your preference in localStorage on your device only; this is not transmitted to our servers.
We use your data only for:
We do not use your data for targeted advertising, and we do not build individual profiles for sale.
We do not sell your personal data. We do not share your email address or any personally identifiable information with third parties for marketing purposes.
We may share data with service providers who assist in operating HELM (such as hosting infrastructure), under strict data-processing agreements that prohibit independent use of your data. We may also disclose information if required by applicable law or to protect the security and integrity of the platform.
Account data is retained for the duration of your account. Server logs are rotated after 30 days. If you request deletion of your account, we will remove your email and password hash within 14 days. Anonymised analytics events, which contain no personal identifiers, may be retained indefinitely.
You have the right to request access to, correction of, or deletion of the personal data we hold about you. To exercise these rights, contact us at support@helm.trade. We will respond within 30 days.
To delete your account and associated data, email us with the subject line “Delete my account” from the address linked to your HELM account. We will confirm deletion within 14 days.
Passwords are hashed using bcrypt before storage. Sessions are signed with a server-held secret and transmitted only over HTTPS. We perform periodic reviews of access controls and dependency security. No system is fully immune to attack; we encourage you to use a strong, unique password.
We may update this Privacy Policy from time to time. When we do, we will revise the “Last updated” date at the top of this page. Continued use of HELM after a change constitutes acceptance of the revised policy.