TradeLasso

Privacy Policy

Last Updated: March 18, 2026

This Privacy Policy describes how TradeLasso ("Company", "We", "Us", or "Our") collects, uses, discloses, and protects Your information when You use our restricted party screening and compliance service (the "Service"). This policy explains Your privacy rights and how applicable laws protect You.

By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy.

1. Interpretation and Definitions

1.1 Interpretation

The words whose initial letters are capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

1.2 Definitions

For the purposes of this Privacy Policy:

  • Account means a unique account created for You to access our Service or parts of our Service.
  • Company (referred to as either "the Company", "We", "Us" or "Our") refers to TradeLasso, a Wyoming-based entity.
  • Cookies are small files placed on Your device by a website, containing details of Your browsing history among its many uses.
  • Country refers to Wyoming, United States.
  • Device means any device that can access the Service such as a computer, cellphone, or digital tablet.
  • Personal Data is any information that relates to an identified or identifiable individual.
  • Service refers to the Website and all associated features, tools, and functionalities provided by TradeLasso.
  • Service Provider means any natural or legal person who processes the data on behalf of the Company.
  • Usage Data refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself.
  • Website refers to TradeLasso, accessible from https://tradelasso.com.
  • You means the individual accessing or using the Service, or the company or other legal entity on behalf of which such individual is accessing or using the Service.

2. Information We Collect

2.1 Personal Data

While using Our Service, We may ask You to provide Us with certain personally identifiable information, including but not limited to:

  • Identity Data: First name, last name, username, and account credentials
  • Contact Data: Email address, phone number, physical address
  • Account Data: Account settings, preferences, and subscription tier
  • Profile Data: Company name, job title, industry sector (if applicable)

2.2 Usage Data

Usage Data is collected automatically when using the Service, including Your Device's IP address, browser type and version, pages visited, time and date of visit, unique device identifiers, operating system, and other diagnostic data.

2.3 Screening and Compliance Data

When You use our restricted party screening tools, We may collect:

  • Names, aliases, and identifiers of entities or individuals You screen
  • Search queries and screening parameters
  • Screening results and match data
  • Saved profiles and watchlist monitoring preferences
  • Batch screening file uploads (CSV data)
  • Export and report generation history

2.4 Communication Data

We collect data related to Your communications with Us, including customer support tickets, email communications, feedback and survey responses.

3. How We Use Your Information

3.1 Purposes of Processing

The Company may use Personal Data for the following purposes:

  • To provide and maintain our Service: Including monitoring usage, providing customer support, and ensuring functionality.
  • To manage Your Account: To manage Your registration as a user of the Service.
  • For the performance of a contract: Development, compliance, and undertaking of purchase contracts.
  • To contact You: By email, telephone, SMS, or push notifications regarding updates or informative communications.
  • To process payments: To facilitate transactions for our subscription plans.
  • For compliance and legal obligations: To comply with applicable laws and regulations.
  • To detect, prevent, and address fraud: To protect the rights, property, or safety of the Company, our users, or the public.
  • For data analysis and service improvement: To analyze usage trends and improve our Service.

3.2 Legal Bases for Processing (GDPR)

If You are located in the EEA, UK, or Switzerland, our legal bases include: Consent, Contract performance, Legal obligation, and Legitimate interests.

4. Cookies and Tracking Technologies

4.1 Types of Cookies We Use

We use Cookies and similar tracking technologies to track activity on Our Service. These include:

  • Necessary / Essential Cookies: Required to provide services and authenticate users.
  • Functionality Cookies: Remember choices You make (login details, language preference).
  • Analytics Cookies: Collect aggregated, anonymous information about how visitors use our Website.
  • Advertising Cookies: Used to make advertising messages more relevant to You.

4.2 Cookie Consent

Where required by law, We use non-essential cookies only with Your consent. You can withdraw consent at any time using our cookie preferences tool, Your browser settings, or Your device settings.

5. Third-Party Services and Integrations

5.1 Analytics Services

We use Google Analytics to monitor and analyze the use of our Service. You can opt out by installing the Google Analytics opt-out browser add-on.

5.2 Remarketing and Advertising

We may use remarketing services including Google Ads, Facebook Custom Audiences, and LinkedIn Ads. You can opt out through each platform's ad settings.

5.3 Email Marketing

We use Your Contact Data to send service updates, feature notifications, and promotional offers. You may opt out by clicking "unsubscribe" in any marketing email or updating Your preferences. Transactional emails will still be sent.

5.4 Security Services

We use Google's Invisible reCAPTCHA to protect our Website from spam and abuse, subject to Google's Privacy Policy and Terms of Use.

6. Payment Processing

6.1 Paddle as Merchant of Record

We use Paddle as our Merchant of Record for all payment processing. We do not store or collect Your full financial data (credit card numbers, CVV codes, or banking details) on our own servers. Payment information is transmitted directly to Paddle's secure servers.

6.2 What We Receive from Paddle

Paddle may share with Us: transaction confirmations, subscription status, customer email address, billing country (for tax compliance), and custom data fields for account linking. This information is used solely to manage Your subscription and provide support.

7. Data Sharing and Disclosure

7.1 When We Share Your Personal Data

  • With Service Providers: To monitor and analyze usage, process payments, provide support, and ensure security.
  • For Business Transfers: In connection with mergers, acquisitions, or sale of assets.
  • With Affiliates: Required to honor this Privacy Policy.
  • With Your Consent: For any other purpose with Your explicit consent.

7.2 Legal Disclosures

We may disclose Your Personal Data to comply with legal obligations, respond to valid government requests, protect Company rights, prevent wrongdoing, or protect personal safety.

7.3 No Sale of Personal Data

We do not sell Your Personal Data to third parties for monetary consideration.

8. International Data Transfers

Your information may be transferred to and maintained on computers located outside of Your jurisdiction. We ensure international transfers are subject to appropriate safeguards including Standard Contractual Clauses (SCCs), Adequacy Decisions, and Binding Corporate Rules.

9. Data Retention

9.1 Retention Periods by Data Category

  • User Accounts: Retained for account duration plus up to 24 months after closure.
  • Support Tickets: Up to 24 months from ticket closure.
  • Website Analytics Data: Up to 24 months from collection.
  • Search Queries and Results: Up to 24 months, or longer for compliance auditing.
  • Batch Screening Files: Deleted within 90 days of upload unless results are saved.
  • Transaction Records: Up to 7 years for tax and accounting compliance.

9.2 Data Deletion

When retention periods expire, We securely delete or anonymize Personal Data. Residual copies may remain in encrypted backups for up to 90 days.

10. Data Security

We implement security measures including HTTPS/TLS encryption, access controls, secure authentication, regular security audits, and incident response plans. While We strive to protect Your data, no method of transmission over the Internet is 100% secure.

Data Breach Notification

In the event of a data breach that risks Your rights and freedoms, We will notify You and relevant authorities within 72 hours of becoming aware of the breach.

11. Your Privacy Rights

General Rights

Depending on Your location and applicable laws, You may have the following rights:

  • Right of Access: Request a copy of Your Personal Data.
  • Right to Rectification: Request correction of inaccurate data.
  • Right to Erasure: Request deletion of Your Personal Data.
  • Right to Restrict Processing: Request limitation of processing.
  • Right to Data Portability: Receive Your data in a structured, machine-readable format.
  • Right to Object: Object to processing based on legitimate interests.
  • Right to Withdraw Consent: Withdraw consent at any time.

Exercising Your Rights

To exercise any of these rights, contact us through our contact page. We will respond to Your request within 30 days (or sooner if required by applicable law).

12. Compliance with Privacy Laws

GDPR (EEA, UK, Switzerland)

We comply with the General Data Protection Regulation and UK GDPR. You have all rights described in Section 11 and may lodge a complaint with Your local supervisory authority.

CCPA (California)

California residents have additional rights including the right to know what Personal Information is collected, the right to delete, the right to opt-out of "sale" of Personal Information, and the right to non-discrimination.

13. Specialized Compliance Data

Our Service processes specialized compliance and screening data. We handle this data with heightened care and purpose limitation—screening data is processed only to provide the Service, generate reports, and maintain audit trails. We do not use screening data for marketing, advertising, or unrelated purposes.

14. Children's Privacy

Our Service does not address anyone under the age of 18. We do not knowingly collect personally identifiable information from anyone under 18. If we become aware that a child has provided Us with Personal Data, We will take steps to remove that information.

15. Links to Other Websites

Our Service may contain links to other websites that are not operated by Us. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

16. Changes to This Privacy Policy

We may update Our Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For material changes, We will provide notice via email or a prominent notice on our Service prior to the change becoming effective.

17. Contact Us

If You have any questions about this Privacy Policy, You can contact us: