Privacy Policy

Integrati Solutions AB ("Company", "we", "us", or "our"), a company registered in Sweden, operates the Insiqta platform — an AI-native market data service specializing in Swedish insider trading data. This Privacy Policy explains what personal data we collect, how we use it, who we share it with, and your rights regarding your data.

This policy applies to all users of our website, screener, API, WebSocket feeds, MCP Server, and related services (collectively, the "Service"). By using the Service, you acknowledge that you have read and understood this Privacy Policy.

We collect the following categories of personal data:

We use your personal data for the following purposes:

• Providing, operating, and maintaining the Service
• Processing subscriptions and managing billing through Stripe
• Sending transactional emails (account verification, password resets, subscription confirmations)
• Delivering notifications based on your configured rules
• Enforcing rate limits and API quotas tied to your subscription plan
• Preventing fraud, abuse, and unauthorized access
• Improving the Service based on aggregated usage patterns
• Complying with legal obligations

We do not sell your personal data. We do not use your data for advertising or profiling purposes.

We share personal data with the following third-party services, each of which processes data in accordance with their own privacy policies:

We do not use any third-party analytics, advertising, or tracking services.

We use minimal client-side storage:

• Session cookie — A single HTTP-only, secure cookie used to maintain your authenticated session. This cookie is essential for the Service to function and cannot be disabled.
• Theme preference — A localStorage entry that stores your light/dark theme preference. This data never leaves your browser.

We do not use third-party cookies, tracking pixels, or advertising cookies of any kind.

We retain your data according to the following schedule:

• Account data — Retained for as long as your account is active. Deleted upon account deletion request.
• Usage and access logs — Retained for 90 days, then automatically purged.
• Billing records — Retained as required by applicable tax and accounting laws (typically 7 years under Swedish law).

When you request account deletion, we will delete or anonymize your personal data within 30 days, except where retention is required by law.

We implement appropriate technical and organizational measures to protect your personal data, including:

• Encrypted connections (HTTPS/TLS) for all data in transit
• Cryptographic password hashing — we never store plaintext passwords
• Secure, HTTP-only session cookies with SameSite protection
• API key isolation per account
• Rate limiting and abuse detection

While we take reasonable steps to protect your data, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

Under the General Data Protection Regulation (GDPR), you have the following rights regarding your personal data:

• Right of access — You can request a copy of the personal data we hold about you.
• Right to rectification — You can ask us to correct inaccurate or incomplete data.
• Right to erasure — You can request deletion of your personal data, subject to legal retention requirements.
• Right to data portability — You can request your data in a structured, machine-readable format.
• Right to restrict processing — You can ask us to limit how we use your data in certain circumstances.
• Right to object — You can object to the processing of your data where we rely on legitimate interests.

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

You also have the right to lodge a complaint with the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten, IMY) if you believe your data protection rights have been violated.

Your personal data may be processed in countries outside of your country of residence, including countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place, such as standard contractual clauses approved by the European Commission or reliance on adequacy decisions.

The Service is not intended for individuals under 18 years of age. We do not knowingly collect personal data from children. If we become aware that we have collected data from a person under 18, we will take steps to delete that information promptly.

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, notify you by email.

Your continued use of the Service after changes take effect constitutes your acknowledgment of the updated policy. We encourage you to review this page periodically.

If you have any questions about this Privacy Policy or how we handle your data, please contact us: