← Back

OMNISC Privacy Policy

Effective Date: 2026-04-01

This Privacy Policy explains how OMNISC LLC ("Omnisc," "we," "us," or "our") collects, uses, stores, shares, and protects personal data when you visit omnisc.tech, create or access an account, purchase a subscription, or otherwise use our website, applications, and subscription-based financial intelligence services (collectively, the "Service").

If you do not agree with this Privacy Policy, please do not use the Service.

1. Who We Are

Omnisc is operated by:

OMNISC LLC 30 N Gould St, Ste N Sheridan, WY 82801 United States Support: support@omnisc.tech Privacy / Legal: david.izmailovsky@omnisc.tech

2. Scope of This Policy

This Privacy Policy applies to personal data we collect through:

  • our website and application;
  • waitlist registration;
  • checkout and subscription flows;
  • account setup, login, password reset, and authentication flows;
  • support and service communications;
  • your use of the Service, including watchlists and account features.

This Privacy Policy does not apply to third-party websites, payment pages, or services that we do not control, even if they are linked from our Service.

3. Types of Data We Collect

Depending on how you use the Service, we may collect the following categories of personal data:

A. Identity and Contact Data

  • email address, including email provided through waitlist registration;
  • name, if you choose to provide it.

B. Account and Authentication Data

If you create or activate an account, we may process:

  • securely hashed password credentials;
  • setup-password tokens;
  • password reset tokens;
  • refresh tokens;
  • failed login attempt counters;
  • temporary account lock information;
  • account status and account-related timestamps, such as account creation, updates, and last login.

C. Subscription and Billing Data

We may process limited subscription and billing-related information, such as:

  • subscription plan;
  • subscription status;
  • payment provider;
  • billing cadence;
  • subscription identifiers and customer identifiers assigned by the payment provider;
  • current billing period information;
  • cancellation status;
  • country or country code for routing, tax, and payment-provider selection.

Important: We do not store full payment card numbers or full payment credentials. Payments are processed by third-party payment providers.

D. Usage and Product Data

We may process information about how you use the Service, such as:

  • watchlist data;
  • account preferences;
  • feature usage;
  • service interaction logs;
  • API request metadata, including endpoints accessed, timestamps, and associated account identifiers, for operational monitoring, security, and usage enforcement;
  • device/browser or request metadata needed to operate and secure the Service.

E. Region and Routing Data

We may temporarily process your IP address and country selection at checkout or onboarding in order to:

  • route you to the appropriate payment provider;
  • support fraud prevention and abuse prevention;
  • apply region-specific legal or billing rules.

We do not use IP-based routing data for behavioral advertising.

F. Communications Data

If you contact us or receive service emails, we may process:

  • email content;
  • support requests;
  • account emails such as welcome emails, password setup emails, password reset emails, billing emails, and service notices.

G. Cookies and Similar Technologies

At MVP launch, we intend to use only strictly necessary cookies or similar local storage technologies required to operate the Service, such as authentication/session functionality.

We do not currently intend to use analytics or marketing cookies on MVP launch. If we add non-essential cookies later, we will update this Privacy Policy and, where required, request consent before using them.

4. How We Collect Data

We collect personal data:

  • directly from you, when you enter information into forms, checkout, login, support, or account pages;
  • automatically, when you interact with the Service and our infrastructure logs certain technical events;
  • from payment providers, when a subscription purchase, renewal, cancellation, or billing event occurs;
  • from authentication and email systems involved in account setup and account recovery.

5. How We Use Personal Data

We use personal data for the following purposes:

A. To Provide and Operate the Service

  • create and maintain user accounts;
  • authenticate users and protect account access;
  • provide subscription-based access to the Service;
  • display watchlists, account data, and related user features.

B. To Process Purchases and Manage Subscriptions

  • create and manage subscription records;
  • route users to the appropriate payment provider based on country or region;
  • receive and process payment-related events from Stripe or Lemon Squeezy;
  • provide billing and subscription management.

C. To Send Service Communications

  • send account activation and password setup emails;
  • send password reset emails;
  • send billing, subscription, and service-related notices;
  • respond to support or legal/privacy requests.

D. To Secure the Service

  • detect unauthorized account sharing, suspicious access, abuse, fraud, or misuse;
  • enforce account lockout or other security protections where appropriate;
  • investigate incidents and maintain platform security.

E. To Comply With Legal Obligations

  • maintain records required for legal, tax, accounting, security, or dispute-resolution purposes;
  • comply with applicable laws, sanctions, payment obligations, and regulatory requirements.

F. To Improve and Maintain the Service

  • debug operational problems;
  • maintain reliability and performance;
  • review service usage trends at an operational level.

We do not sell personal data to advertisers.

6. Legal Bases for Processing

Where applicable data protection laws require a legal basis, we rely on one or more of the following:

  • Contract: processing necessary to provide the Service, subscriptions, account access, and support;
  • Legitimate interests: service security, fraud prevention, operational monitoring, service improvement, and basic business administration;
  • Legal obligation: where we must retain or disclose data to comply with law, tax, payment, sanctions, or regulatory requirements;
  • Consent: where consent is required, such as for non-essential cookies if added later.

Where we rely on legitimate interests, we assess that those interests do not override your fundamental rights and freedoms.

7. Payment Providers

Depending on your region, subscription payments are processed through different payment providers.

Stripe

For users in the United States, purchases are processed through Stripe.

Lemon Squeezy

For users in the EU/EEA/UK, purchases are processed through Lemon Squeezy. For purchases processed through Lemon Squeezy, Lemon Squeezy acts as merchant of record for billing, tax/VAT collection, and certain payment-related processes.

We receive only the information reasonably necessary to confirm, manage, or update subscription status and account access.

8. Service Providers and Processors

We may share personal data with trusted service providers that help us operate the Service, including:

  • Google Cloud Platform (GCP) infrastructure, including Cloud Run, Cloud SQL, Secret Manager, and related operational services;
  • Stripe for payment processing for applicable users;
  • Lemon Squeezy for payment processing and merchant-of-record services for applicable users;
  • Resend for transactional email delivery;
  • OpenAI for market-data-related analytical processing only;
  • authentication, security, logging, hosting, or support vendors used to operate the Service.

These providers process data on our behalf or as independent controllers/processors where applicable, and only to the extent reasonably necessary for their services. OpenAI processes market-data inputs as part of our analytical workflow, and OpenAI's processing is governed by OpenAI's applicable usage policies and data processing terms.

9. OpenAI and Market Analytics

We use OpenAI services only in connection with market-data-related analytical workflows.

We do not send your personal investment profile, personal financial circumstances, or user-generated personal prompts to OpenAI as part of the Service's analytical workflow. OpenAI usage is limited to market-data-related analysis as part of the Service's analytical operations.

10. International Data Transfers

Because Omnisc is operated from the United States and uses cloud and software providers that may process data in multiple countries, your personal data may be transferred to, stored in, or processed in jurisdictions outside your country of residence.

Where applicable, we take reasonable steps intended to ensure that such transfers are made using appropriate safeguards required by applicable law.

11. Data Retention

We retain personal data for as long as reasonably necessary for the purposes described in this Privacy Policy.

Our general retention period is up to 2 years, unless:

  • a longer retention period is required by law;
  • retention is necessary for billing, tax, accounting, fraud prevention, security, legal claims, or dispute resolution; or
  • continued retention is otherwise permitted or required under applicable law.

Routing-related IP data is used only at the time of routing or checkout logic and is not retained as a standalone long-term profile for analytics or advertising.

Upon account deletion, your account profile, watchlist, preferences, and similar account-level data will be deleted within 30 days, except where retention is legally required. Limited billing, subscription, and transaction records may be retained for up to 2 years where required for legal, tax, accounting, fraud prevention, security, or dispute-resolution purposes.

12. Your Privacy Rights

Depending on your jurisdiction, you may have rights to:

  • request access to personal data we hold about you;
  • request correction of inaccurate data;
  • request deletion of your data;
  • object to certain processing;
  • request restriction of processing;
  • request portability of certain data, where applicable;
  • withdraw consent where processing is based on consent; and
  • lodge a complaint with a competent data protection or supervisory authority, where applicable.

You may exercise privacy requests by contacting david.izmailovsky@omnisc.tech.

We may need to verify your identity before fulfilling a request.

13. Global Rights Approach

Omnisc applies a consistent global approach to privacy and may honor privacy requests from users regardless of jurisdiction, to the extent practical and except where limited by law, technical feasibility, fraud prevention, security needs, or overriding legal obligations.

Specific legal rights may still vary by country or region.

14. Account Deletion

If you request account deletion:

  • we will review and process the request;
  • we will complete deletion of account-level data within 30 days, except where retention is legally required;
  • some limited billing, subscription, transaction, legal, fraud-prevention, security, audit, or dispute-resolution records may be retained for up to 2 years or longer where required by law.

Deleting your account may not automatically cancel an active subscription. Subscription cancellation may need to be completed through the relevant billing portal or payment provider.

15. Security

We use reasonable administrative, technical, and organizational measures intended to protect personal data, including authentication controls, securely hashed password credentials, token-based account security, controlled cloud infrastructure, and secret management. Data stored in our cloud infrastructure is encrypted at rest and in transit using industry-standard encryption.

However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

In the event of a data breach that we believe may pose a risk to your rights or freedoms, we will take reasonable steps to notify affected users and, where required, applicable supervisory authorities, in accordance with applicable law.

16. Children

The Service is not intended for individuals under 18 years old.

We do not knowingly provide the Service to minors. If we become aware that a person under 18 has created an account or provided personal data, we may suspend or delete the account and delete associated data, subject to applicable legal requirements.

17. Automated Processing

The Service uses automated analytical systems to generate market-related outputs.

These outputs do not constitute automated decision-making with legal or similarly significant effects on you within the meaning of applicable data protection law. You are not required to act on any analytical output.

18. EU/EEA Contact

If you are located in the EU/EEA and have questions about our data practices, you may contact us at david.izmailovsky@omnisc.tech. We will designate an EU representative if and when required under applicable law.

19. Third-Party Sites and Services

The Service may link to or interact with third-party services, including payment pages or email links. We are not responsible for the privacy practices of third parties that we do not control.

We encourage you to review their privacy policies separately.

20. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you at least 30 days before the changes take effect through the Service, by email, or by other reasonable means.

The updated version will become effective on the date stated at the top of this Privacy Policy.

21. Contact Us

If you have questions, requests, or concerns about this Privacy Policy or our privacy practices, contact:

Support: support@omnisc.tech Privacy / Legal: david.izmailovsky@omnisc.tech