Privacy Policy
Last updated: March 2026
1. Who We Are
UQS Score is a product of Dolnio, a sole proprietorship registered in the Netherlands.
KVK number: 98036785
BTW number: NL005306225B58
Contact: info@dolnio.com
We are committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR) and Dutch privacy law (AVG).
2. What Data We Collect
We collect the following categories of personal data:
Account Data: When you sign in with Google, we receive your name, email address, and profile picture from Google OAuth. We store your email to manage your account.
Usage Data: Your watchlist selections and analysis preferences are stored to provide the service.
Payment Data: If you subscribe to Pro, payments are processed by Stripe. We store your Stripe customer ID but never your payment card details. Stripe processes your payment data under their own privacy policy.
Technical Data: Basic server logs including IP address, browser type, and page visits. These are used for security and service improvement.
3. Why We Process Your Data
We process your data for the following purposes and legal bases:
Service delivery (contractual necessity): To provide you with stock analysis, scoring, and watchlist features.
Account management (contractual necessity): To manage your account and subscription.
Security and fraud prevention (legitimate interest): To protect the service and its users.
Service improvement (legitimate interest): To understand how the service is used and improve it.
4. Third-Party Services
We use the following third-party services that may process your data:
Google OAuth: For authentication. Subject to Google's privacy policy.
Stripe: For payment processing. Subject to Stripe's privacy policy. Stripe is PCI DSS compliant.
Supabase: For database hosting. Data is stored in Supabase-managed infrastructure.
Vercel: For website hosting and serving. Subject to Vercel's privacy policy.
Vercel Analytics: For anonymous website usage statistics. No personal data or cookies are used for analytics.
5. Data Retention
We retain your account data for as long as your account is active. If you delete your account or request deletion, we will remove your personal data within 30 days. Anonymized usage data may be retained for analytics purposes.
6. Your Rights (GDPR)
Under GDPR, you have the following rights:
Right of access: Request a copy of your personal data.
Right to rectification: Request correction of inaccurate data.
Right to erasure: Request deletion of your data ("right to be forgotten").
Right to data portability: Receive your data in a machine-readable format.
Right to object: Object to processing based on legitimate interest.
Right to withdraw consent: Withdraw consent at any time where processing is based on consent.
To exercise any of these rights, contact us at info@dolnio.com.
7. Cookies
We use essential cookies only, which are necessary for the service to function (authentication session). We do not use tracking cookies, advertising cookies, or third-party analytics cookies. Since we only use strictly necessary cookies, consent is not required under GDPR/ePrivacy regulations, but we inform you of their use via our cookie banner.
8. International Transfers
Some of our third-party service providers (Google, Stripe, Vercel, Supabase) may process data outside the European Economic Area (EEA). These transfers are protected by Standard Contractual Clauses (SCCs) or adequacy decisions as required by GDPR.
9. Security
We implement appropriate technical and organizational measures to protect your personal data, including encrypted connections (HTTPS), secure authentication (OAuth 2.0), and access controls on our database.
10. Changes to This Policy
We may update this privacy policy from time to time. Significant changes will be communicated via the website. Continued use of the service constitutes acceptance of the updated policy.
11. Contact & Complaints
For privacy inquiries or to exercise your rights:
Dolnio
KVK: 98036785
Email: info@dolnio.com
If you believe your data protection rights have been violated, you have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) at autoriteitpersoonsgegevens.nl.