Privacy Policy

This Privacy Policy describes how Oryvx ("we", "us", or "our"), operated by Mohammed Rashid, an individual operating as a sole proprietor (the "Operator"), handles information when you use the Oryvx mobile application (the "App") and the website at oryvx.com (the "Site", together with the App, the "Service").

Plain-English summary: Oryvx is offline-first. Your trades, notes, screenshots and account information stay on your device. We do not run a backend for the App, we do not track you with analytics, and we do not sell or share your personal data with third parties.

1. Information We Collect

1.1 Information stored on your device only

When you use the App, the following information is created and stored locally on your device using the Hive database engine. This information is never transmitted to our servers (we do not operate any servers that receive App data):

• Trade entries (instrument, direction, entry/exit prices, size, P&L, dates).
• Notes, screenshots, and tags you attach to trades.
• Account configurations (account names, starting balances, currency).
• App preferences (theme, notification settings, biometric-lock state).
• Optionally: MetaTrader 5 ("MT5") investor-password credentials, encrypted at rest on your device, if you use the broker-sync feature.

1.2 Information you may voluntarily provide to us

If you contact us by email (see the Contact page), we receive the information you choose to send, including your email address and the contents of your message. We retain this only as long as needed to respond and for our records.

1.3 Information collected automatically on the Site

When you visit the Site, our hosting provider may automatically collect standard web-server log data (IP address, user agent, referring URL, requested pages, timestamps). This is used solely for security, abuse-prevention, and aggregate traffic analysis. The Site itself does not use cookies for advertising or cross-site tracking.

1.4 What we do NOT collect

We do not collect, and the App does not transmit, any of the following to us:

• Your trades, P&L, screenshots, or notes.
• Your name, phone number, payment card details, or address.
• Your MT5 password or any other broker credentials.
• Device identifiers (advertising ID, IDFA, GAID) for tracking purposes.
• Behavioral analytics, crash telemetry, or usage statistics.

2. How Your Information Is Used

Information stored on your device is used solely to provide App functionality:

• Displaying your trade history, statistics, equity curves, and home-screen widgets.
• Generating share images from your data, only when you explicitly choose to share.
• Connecting to MT5 brokers (via the investor password you provide) to import trades — this connection is made directly from your device to your broker.
• Producing PDF and backup exports when you request them.

Information you send by email is used only to respond to your inquiry and maintain a record of correspondence.

3. How Your Information Is Shared

We do not sell your personal data. We do not share your App data with third parties because we never receive it in the first place. Specifically:

• We do not transmit your trades to any third party.
• We do not embed third-party advertising SDKs in the App.
• We do not use third-party analytics SDKs (Firebase Analytics, Mixpanel, Amplitude, or similar) in the App.
• Share images generated by the App are only transmitted when you affirmatively tap "Share" and choose the destination (e.g. Instagram, X, Messages).
• If a future version of the App introduces optional cloud-sync features, you will be notified, and this Policy will be updated before enabling them.

We may disclose information we hold (e.g. emails you sent us, server logs) if required by valid legal process or to protect the rights, property, or safety of the Operator, our users, or others.

4. Third-Party Services

The App and Site rely on the following third parties; each has its own privacy practices:

• Apple App Store / Google Play Store — distribute the App and may collect download/install analytics under their respective policies.
• Site hosting provider (Cloudflare Pages) — receives standard web-server logs for the Site.
• Google Fonts — the Site loads the Outfit and JetBrains Mono fonts from Google's CDN, which may receive your IP address when fetching them.
• Your chosen MT5 broker — if you use broker-sync, the App communicates directly with your broker's MT5 server using credentials you provide. We are not a party to that connection.
• Apple / Google Sign-In, App Store payment systems — only if you make in-app purchases; handled by the platform.

5. Data Retention

Because trade data lives on your device, retention is entirely under your control. Uninstalling the App or using the in-app "Reset" function permanently deletes the data on your device. Backups you have made are not affected.

Email correspondence is retained for as long as we believe it may be useful for follow-up support, dispute resolution, or compliance. You may request deletion at any time (see Section 7).

6. Children's Privacy

The App is not directed to children under the age of 13 (or 16 in the EEA / UK). We do not knowingly collect personal information from children. If we learn that we have inadvertently received information from a child, we will delete it. Parents or guardians who believe their child has provided information should contact us using the address on the Contact page.

7. Your Privacy Rights

7.1 All users

Because your App data lives on your device, you control it directly: view it, export it (via the Backup feature), or delete it via the in-app Reset.

7.2 European Economic Area, UK, and Switzerland (GDPR / UK GDPR)

If you are a resident of the EEA, UK, or Switzerland, you have the right to:

• Access personal data we hold about you (e.g. emails you sent us).
• Rectify inaccurate data.
• Erase data we hold about you ("right to be forgotten").
• Restrict or object to our processing.
• Data portability.
• Withdraw consent at any time where processing is based on consent.
• Lodge a complaint with your local supervisory authority.

The legal basis for our limited processing (responding to email, securing the Site) is our legitimate interest under Article 6(1)(f) GDPR. To exercise these rights, email us using the Contact page.

7.3 California (CCPA / CPRA)

California residents have the right to know what personal information we collect, to delete it, to correct it, to opt out of any "sale" or "sharing" of personal information, and not to be discriminated against for exercising these rights. We do not sell or share personal information for cross-context behavioral advertising.

7.4 Other US states

Residents of states with comprehensive privacy laws (including Virginia, Colorado, Connecticut, Utah, and others as they take effect) have rights similar to those described above. Contact us to exercise them.

8. International Data Transfers

The Operator is based in India. Email you send us may be processed there. Where required, we rely on appropriate safeguards (such as Standard Contractual Clauses) for any cross-border transfers.

9. Security

We implement reasonable measures to protect information in our care: encryption of MT5 credentials at rest on your device, optional biometric / PIN app-lock, and transport encryption (TLS) for the Site. No system is ever 100% secure; we cannot guarantee absolute security, particularly of email transmission.

10. Changes to This Policy

We may update this Policy from time to time. We will revise the "Last updated" date above. Material changes will be communicated within the App or by a prominent notice on the Site.

11. Contact

Questions, requests to exercise privacy rights, or concerns about this Policy can be sent to our contact page, or directly to myfikrapp@gmail.com.

Plain-language disclaimer: This Privacy Policy is provided for general transparency and is not legal advice. We recommend consulting a qualified attorney to ensure compliance with the laws applicable to your specific situation.