Privacy Policy

This Privacy Policy explains what information Your Daily Bullion (“we,” “us,” or “the Service”) collects when you use our website, newsletter, AI assistant, learning journey, community features, and paid memberships, and how that information is used, stored, and shared.

Your Daily Bullion is operated from the Republic of Costa Rica. The Service is hosted on infrastructure located in the United States and is written primarily for a U.S. audience. By using the Service you consent to the practices described here, including the international transfer of your information from Costa Rica to the United States described in Section 11. If you do not agree, please do not use the Service.

Plain-English summary: we collect what we need to give you a personalized education experience around precious metals, run your account, deliver email you asked for, process payments, and improve the platform. We do not sell your personal information. If advertising is enabled, we may show contextual third-party ads such as Google AdSense in designated ad placements. Your private holdings notes are encrypted before they are saved.

Account information. When you create an account we store your email address, a username/handle, an optional display name, an optional avatar and banner image, an optional short bio and job title, and optional links to your X/Twitter and LinkedIn profiles. If you sign up with email and password, we store a hashed password (we never see your plaintext password).

Onboarding and profile signals. If you complete the onboarding interview or fill in profile preferences, we store: your stated investing archetype, jurisdiction (e.g., U.S./U.K./E.U./Canada/Australia/Other), interests, goals, daily learning minutes target, learning-style scores, topic-confidence scores, whether you have prior purchases or a storage plan, your preferred currency and unit (troy ounce, gram, kilo, tola), your time zone and locale, your “stacker since” date, your profile visibility (private, members-only, or public), and which surface widgets you have pinned, reordered, or dismissed.

Holdings and notes (encrypted). If you choose to track precious metals holdings, the sensitive fields — acquisition price, sold price, storage label, and free-text notes — are encrypted with AES-256-GCM before they are written to our database. Estate/legacy instructions you record for trusted contacts are encrypted the same way. Optional OPSEC features (stealth lock, duress PIN, decoy mode, WebAuthn) store only hashed PINs; we never store the plaintext PIN.

AI assistant conversations. When you chat with our AI assistant or take the AI-driven onboarding interview, we store your messages, the assistant’s responses, any tool calls and tool results, and per-message token counts. We also store an optional auto-generated conversation title and your archive/pin state. Anonymous visitors are tracked by an opaque session key (stored in your browser) rather than by user ID.

Learning progress. We store your active syllabus plan, which lessons you have started, completed, deferred, or skipped, your per-knowledge-component competence and confidence scores, your quiz attempts, and engagement events (views, scroll, finish, save, share, dwell time, reactions, section interactions). We also store your lesson-player session state (frame position, pause/resume).

Community submissions. If you submit a Stacker Spotlight you provide a display name, a short story, an optional location, and an optional stack photo. If you submit a community Q&A question you provide the question text. Follow and block relationships you create are stored.

Newsletter and email. If you subscribe to one of our email series we store your email address, the source of the signup, the series you are subscribed to, double-opt-in confirmation tokens, an unsubscribe token, and engagement metrics (opens, clicks) reported by our email provider.

Subscription and billing. Paid Insider memberships are processed by our payment processor (see “Service providers” below). We store the customer ID, subscription ID and variant ID issued by the processor, the subscription tier and status, trial end date, renewal date, and links to the processor’s card-update and customer portals. We do not store full credit-card numbers or CVV; those are handled directly by the payment processor.

Notifications. If you opt in to in-app, email, push, SMS, or WhatsApp notifications we store your delivery preferences per channel and per notification type, verified delivery endpoints (e.g., phone number), and Web Push subscription endpoints and keys.

Server logs and request data. Our API logs each request (method, path, status, latency, errors). When you are signed in, the log includes your user ID. IP addresses appear in raw request headers and may appear in server logs and in the admin activity log for security and audit purposes. Sensitive payloads (passwords, tokens, API keys) are redacted before logging.

First-party page-view analytics. We record pageviews to a first-party table that stores: the path you visited, the page title, an anonymous session ID for non-signed-in visitors (stored in your browser’s localStorage), your user ID if you are signed in, the referring URL, your user agent, a SHA-256 hash of your IP address bucketed by day (we do not store the raw IP in this table), and the country derived from the request.

Connected social accounts. If you connect a third-party social account to publish from the Service (e.g., X/Twitter, Instagram via Instagram Login or Facebook Login for Business, Threads, YouTube), we store the platform’s OAuth access and refresh tokens encrypted at rest, along with the connected handle, the platform user ID, the granted scopes, and the token expiry. When you connect Instagram via Facebook Login for Business, we additionally store the Facebook Page ID and Page access token used to publish to the linked Instagram Business Account. We never share these tokens with anyone else; we use them only to publish to the platform on your behalf.

Admin activity log. If you act as a writer or admin, your administrative actions (edit, publish, delete, etc.), the resource affected, your IP address, and your user agent are recorded to a tamper-evident, append-only audit log.

We use the information described above to:

• Create and maintain your account, sign you in, and keep your session active.
• Personalize your learning journey, the AI assistant’s answers, the onboarding interview, your dashboard surfaces, and content recommendations.
• Generate and adapt your syllabus plan based on your stated goals, your knowledge-component mastery, and your engagement signals.
• Operate the AI assistant, including sending the necessary message history and system context to upstream model providers and storing the resulting transcript.
• Send the email you asked for (newsletter series, transactional confirmations, password resets, billing receipts, subscription notices).
• Process subscription payments, renewals, cancellations, and trial state via our payment processor and react to webhooks they send us.
• Operate community features (Stacker Spotlights, Q&A, follows, blocks) and moderate content.
• Detect and prevent abuse, fraud, and rate-limit violations, enforce subscription tier and role-based access, and investigate security incidents.
• Measure aggregate usage and improve performance, accessibility, and content quality.
• Comply with our legal obligations and respond to lawful requests.

We share information only with vendors that operate the Service on our behalf. Each provider has its own privacy policy. The list below reflects the integrations currently configured for this site — if a vendor is not configured, we do not send your data to it.

• AI model providers (OpenAI, Anthropic, Google Generative AI, Groq) — when you use the AI assistant or take the AI-driven onboarding interview, your message history, the system prompt, and minimal user context (your role and subscription tier) are sent to the provider that powers the active assistant. We send only what is needed to generate the next response.
• Lemon Squeezy — processes Insider subscription payments. They handle your billing details directly; we receive subscription status and lifecycle webhooks.
• Railway — hosts our application, PostgreSQL database, and Redis queue infrastructure in the United States.
• Google AdSense (when enabled by our admins) — delivers sponsored ad placements in designated page slots and may process page context, browser metadata, and ad interaction events to serve and measure ads.
• Meta (Instagram & Facebook) — when an admin connects an Instagram Business or Creator account via “Login with Instagram” or “Login with Facebook,” we exchange the OAuth authorization code through Meta’s Graph API (graph.instagram.com or graph.facebook.com) to obtain a long-lived access token, then call the Content Publishing API to create and publish Feed images, Carousels, Stories, and Reels on behalf of the connected account. We send Meta the captions, alt text, and the publicly accessible URLs of the images or videos we render for that post, plus the access token. We do not send Meta the personal information of your visitors.
• Google Analytics 4 — aggregate site analytics. Configured with IP anonymization where available.
• Twilio (only if you opt in to SMS or WhatsApp notifications) — delivers text messages to the phone number you verify.
• Precious-metals data providers — we fetch spot price data from third-party APIs. We do not send your personal data to these providers; we only identify our application via a User-Agent string.

We do not sell or rent your personal information. When ad inventory is enabled, limited page and device metadata may be shared with the ad provider to render and measure ad placements.

We use a small number of cookies and browser-storage items, all strictly to operate the Service:

• Session cookie. A first-party, HTTP-only, secure session cookie set by our authentication system. It lasts up to 30 days and is refreshed as you keep using the Service. It is required to keep you signed in.
• Anonymous session ID. An opaque identifier stored in your browser’s localStorage so we can group anonymous AI assistant turns and anonymous pageviews into a single session without identifying you personally.
• UI preferences. Theme (light/dark), pinned widgets, and dismissed sections may be stored in localStorage so the interface remembers your choices on your device.

Core product functionality does not depend on advertising cookies. If ad placements are enabled (for example, Google AdSense), your browser may receive ad-related cookies or local storage from that provider for ad serving, frequency capping, and fraud prevention. Google Analytics is enabled on this site and is configured with IP anonymization where available.

When you subscribe to one of our email series we use a double-opt-in flow: we email you a confirmation link, and we only start sending until you click it. Every campaign email contains a one-click unsubscribe link. You can also manage subscriptions inside your account. Transactional email (sign-up confirmation, password reset, billing receipts, subscription state changes) is not optional while you have an account, because it is required to operate the Service.

Insider editorial dispatches. If you are a paid Insider member, we may also send periodic editorial dispatches to your account email (separate from the public newsletter list). You can opt out of those Insider-only dispatches at any time from your account notification settings without losing other transactional or subscription emails.

When you talk to the AI assistant or complete the AI-driven onboarding interview, your messages and the assistant’s responses are stored against your account so you can revisit and continue conversations. Those messages are also sent to the upstream AI provider that powers the active assistant in order to generate the next response. We also derive non-conversational signals (e.g., archetype, learning preferences, topic confidence) and store them on your profile to personalize the Service.

You can archive or delete conversations at any time from inside the assistant. You can also wipe your lesson history, which clears your lesson-player sessions and the engagement events linked to them, and resets your knowledge-component mastery to its initial estimates.

Do not paste sensitive personal information (government IDs, account numbers, full payment card numbers, third-party login credentials, etc.) into the AI assistant. Treat anything you send to the assistant as something that will be transmitted to a third-party model provider.

We use industry-standard practices: TLS in transit, HTTP-only secure session cookies, hashed passwords (never stored in plaintext), AES-256-GCM encryption at rest for sensitive fields (holdings prices, holdings notes, storage labels, estate instructions, connected social-account tokens), hashed PINs for OPSEC features, redaction of sensitive payloads in logs, and role-based access control. Administrative actions are written to an append-only audit log.

No method of transmission or storage is 100% secure. If we become aware of a breach affecting your personal information, we will notify you and the relevant authorities as required by applicable law — including, where applicable, the breach-notification rules of U.S. states where affected users reside and Costa Rica’s Ley de Protección de la Persona Frente al Tratamiento de sus Datos Personales (Ley 8968) and its regulations.

We retain account and content data for as long as your account is active. You can delete your account at any time from your account settings; this performs a soft-delete that hides your profile and content, unsubscribes you from newsletters, and severs your active session. Some records are retained after a soft-delete for security, audit, and legal reasons:

• Administrative audit log entries are retained indefinitely so we have a tamper-evident history of changes to the platform.
• Aggregate, de-identified analytics (pageview counts, item statistics) may be retained after individual records are removed.
• Records we are required to keep for tax, accounting, or fraud-prevention purposes are retained for the period required by law.

If you want a hard deletion of identifiable records beyond the soft-delete, email us at the address in the “Contact” section and we will honor verifiable requests where applicable law allows.

All users. You can access most of your information directly inside your account, edit your profile, manage notification and newsletter preferences, archive or delete AI conversations, wipe lesson history, and delete your account.

U.S. state privacy rights (California, Colorado, Connecticut, Virginia, Utah, and other states with comprehensive privacy laws). Subject to verification and legal exceptions, you may have the right to: (a) confirm whether we process personal information about you and access that information; (b) correct inaccurate personal information; (c) request deletion of personal information; (d) obtain a portable copy of personal information you provided to us; and (e) opt out of “sales” or “sharing” of personal information and of targeted advertising and certain profiling. We do not sell your personal information, we do not share it for cross-context behavioral advertising, and we do not engage in profiling that produces legal or similarly significant effects. California residents may also designate an authorized agent to make a request on their behalf.

Non-discrimination. We will not deny you the Service, charge you a different price, or provide a different level of quality for exercising your privacy rights.

How to make a request. Email us at the address in the “Contact” section from the email tied to your account. We will respond within the time required by applicable law.

Your Daily Bullion is operated from Costa Rica, but our application servers, database, file storage, email provider, payment processor, and AI model providers are located in the United States. As a result, when you use the Service your personal information is transferred from your country (and from Costa Rica) to the United States and processed there, where data-protection laws may differ from those in your country. By using the Service, you consent to that transfer and to processing in the United States and Costa Rica for the purposes described in this Policy.

For users in Costa Rica. This international transfer is disclosed in accordance with Article 14 of Ley 8968. The supervisory authority for personal data in Costa Rica is the Agencia de Protección de Datos de los Habitantes (PRODHAB).

The Service is intended for adults aged 18 and older. We do not knowingly collect personal information from children under 13, and we do not knowingly market the Service to anyone under 18. If you believe a child has provided us with personal information, contact us and we will delete it.

We may update this Privacy Policy from time to time. When we make material changes we will update the “Last updated” date at the top and, where appropriate, notify you by email or in-app banner. Your continued use of the Service after the change takes effect means you accept the updated policy.

For privacy questions or to exercise your rights, email [email protected]. For general support, see our Contact page.

Data controller. The data controller responsible for your personal information is Your Daily Bullion, operated from the Republic of Costa Rica. You can reach the controller at the email address above.