Privacy Policy

1. General Information

The protection of your personal data is of great importance to us. We therefore process your data exclusively on the basis of the legal provisions of the General Data Protection Regulation (GDPR) and applicable national data protection laws.

This Privacy Policy informs you about which personal data we collect on our website, how we use it, and what rights you have as a user.

2. Data Controller

The entity responsible for data processing on this website is:

Kurt Traxl KG
Betriebsstraße 12
4213 Unterweitersdorf
Austria

Website: www.north7.ai

Email: terminal@north7.ai

3. Collection and Storage of Personal Data

When you visit our website, certain technical information is automatically collected. This includes, among other things:

IP address
Date and time of access
Pages visited
Browser and operating system used
Referrer URL (the previously visited page)

This data is used to ensure the stable operation of the website and to improve our services.

4. Use of Our Platform

When you register on our platform or use our service, additional data may be processed, for example:

Name
Email address
Usage data within the platform

This data is used exclusively to provide you with access to the NORTH7 Global Intelligence Terminal and to deliver our services.

5. Contact

When you contact us by email or through a contact form, the data you provide will be stored in order to process your inquiry.

We will not share this data without your consent.

6. Cookies

Our website may use so-called cookies. These are small text files that are stored on your device.

Cookies help us make our website more user-friendly and provide certain functionalities.

You can configure your browser to be informed about the use of cookies or to disable cookies entirely.

7. Web Analytics

To improve our website, anonymized usage data may be analyzed. No personally identifiable profiles are created in this process.

The analysis serves exclusively to technically optimize our platform.

8. Disclosure of Data

Your personal data will generally not be sold or disclosed to third parties, unless:

This is required by law
It is necessary for the provision of our services
You have given explicit consent

8a. Third-Party Service Providers and Data Processors (Art. 13 GDPR)

To operate our platform we engage the following service providers. Personal data is only transmitted to the extent necessary for the respective purpose:

Anthropic PBC, USA — Claude API for AI-powered market analyses.
Legal basis: Art. 6 (1) (b) GDPR (performance of contract).
Data categories: anonymized analysis requests; no directly identifiable personal data.
Transfer to the USA: safeguarded by EU Standard Contractual Clauses (SCC) issued by the European Commission.

PayPal (Europe) S.à r.l. et Cie, S.C.A., Luxembourg — payment processing (subscriptions, single calls, credit packs).
Legal basis: Art. 6 (1) (b) GDPR.
Data categories: email address, payment amount, transaction ID; PayPal account data is processed directly by PayPal.

NowPayments (NOWPayments OU, Estonia) — crypto payment processing including webhooks.
Legal basis: Art. 6 (1) (b) GDPR.
Data categories: wallet address, transaction ID, payment amount.

Hetzner Online GmbH, Germany — hosting / data processor.
Legal basis: Art. 6 (1) (f) GDPR (legitimate interest in stable, secure operation).
A data processing agreement (DPA) pursuant to Art. 28 GDPR is in place.

Google Ireland Ltd., Ireland — Google Analytics (only with cookie consent).
Legal basis: Art. 6 (1) (a) GDPR (consent).
Activated only after explicit consent via our cookie banner. No collection takes place without consent.

Microsoft Ireland Operations Ltd., Ireland — Microsoft Clarity (only with cookie consent).
Legal basis: Art. 6 (1) (a) GDPR (consent).
Activated only after explicit consent via our cookie banner.

Yahoo Finance (Yahoo / Apollo, USA) — public market data API.
No transfer of personal user data takes place; our servers only retrieve public market quotes.

8b. Retention Periods

We retain personal data only for as long as required for the respective purpose or as mandated by statutory retention obligations:

Account data (email, login, settings): until the user deletes the account.
Payment and accounting logs: 7 years (statutory retention pursuant to § 212 UGB and § 132 BAO, Austria).
Session data: 30 days after the last login.
Technical server logs (hashed IP, access time): 14 days for abuse prevention.
Support correspondence: up to 24 months to handle follow-up requests.

9. Data Security

We employ technical and organizational security measures to protect your data against loss, misuse, or unauthorized access.

Our security measures are continuously improved in line with technological developments.

10. Your Rights

You have the right at any time to:

Access information about your stored data
Rectification of inaccurate data
Erasure of your data
Restriction of processing
Data portability
Withdrawal of a given consent

If you wish to exercise any of these rights, you may contact us at any time by email at terminal@north7.ai. We will respond within the statutory period of one month (Art. 12 (3) GDPR).

10a. Right to Lodge a Complaint with a Supervisory Authority

Without prejudice to any other remedy, you have the right to lodge a complaint with a data protection supervisory authority (Art. 77 GDPR). In Austria the competent authority is:

Austrian Data Protection Authority (DSB)
Barichgasse 40–42
1030 Vienna
Austria
Web: www.dsb.gv.at

11. Changes to This Privacy Policy

We reserve the right to update this Privacy Policy to ensure it always complies with current legal requirements or to reflect changes to our services.

NORTH7

Global Intelligence Terminal

Kurt Traxl KG · Austria