Privacy Policy

Effective date: February 27, 2026 · Last updated: February 27, 2026

🛡

Your vault is private. Period.
MetalMetric staff never access, view, analyze, or share the contents of your vault. Your portfolio data belongs to you alone. We do not sell data to third parties, we do not run ads, and we do not use third-party tracking scripts.

1. Who We Are

MetalMetric ("we," "us," "our") operates the website at metalmetric.com and its associated services. MetalMetric is an independently owned and bootstrapped company. We built this platform as precious metals collectors ourselves, and we treat your data with the same care we'd expect for our own.

2. Information We Collect

We collect only what is necessary to operate the service. Here is a complete accounting:

Data Type	Purpose	Stored By
Email address	Account creation, login, transactional emails (receipts, alerts)	Clerk (authentication)
Name (if provided)	Displayed in your account profile	Clerk
Vault items & portfolio data	Storing and displaying your collection, calculating values	Neon (PostgreSQL database)
Payment information	Processing subscriptions (Pro, Elite)	Stripe (we never see your full card number)
Email subscription preferences	Sending price alerts and product updates you opted into	MailerSend

That is the complete list. We do not collect browsing history, device fingerprints, location data, or any form of behavioral analytics beyond basic server logs (IP address, timestamp, page requested) which are automatically generated by our hosting provider and are not used for tracking or profiling.

3. Your Vault Data

We understand that your vault contains sensitive information about your precious metals holdings. We take this responsibility seriously.

🔒 Our Vault Privacy Commitment

MetalMetric employees, contractors, and automated systems do not access the contents of your vault — not for analytics, not for product development, not for marketing, and not for any other purpose.

Your vault data is stored in an encrypted database. It is read only when you request it through the application (loading your vault, calculating values, generating reports). No human at MetalMetric views this data.

The only exception: if you contact our support team and explicitly ask us to help troubleshoot a specific vault item, we may access that item with your written permission, and only for the duration needed to resolve your issue.

4. What We Do Not Do

We believe it is important to be explicit about what we will never do with your data:

We do not sell your data. Not to advertisers, data brokers, analytics companies, or anyone else. Ever.
We do not display advertisements. MetalMetric is funded entirely by subscriptions. There are zero third-party ad scripts on our platform.
We do not use third-party tracking. No Google Analytics, no Facebook Pixel, no retargeting cookies, no behavioral tracking of any kind.
We do not share your vault contents with any third party for any purpose.
We do not profile you. We do not build behavioral profiles, interest graphs, or predictive models from your usage.
We do not use your data to train AI models. Your vault data, portfolio information, and usage patterns are never used as training data.

5. Third-Party Services

We rely on a small number of trusted third-party services to operate MetalMetric. Each is used for a specific, limited purpose:

Clerk — Authentication and account management. Handles your login securely so we never store passwords. Clerk's privacy policy
Stripe — Payment processing for Pro and Elite subscriptions. We never see or store your full card number. Stripe's privacy policy
Neon — PostgreSQL database hosting. Stores your vault items and account data in encrypted form. Neon's privacy policy
MailerSend — Transactional email delivery for alerts and account notifications. MailerSend's privacy policy
Vercel — Website hosting and serverless functions. Vercel's privacy policy

These services process data only as necessary to provide their specific function. We do not grant any third party access to your vault data beyond what is technically required for database hosting.

6. Security

All data transmitted between your browser and MetalMetric is encrypted using 256-bit TLS (HTTPS) on every request. Your vault data is stored in an encrypted PostgreSQL database with access restricted to authenticated application requests only.

Authentication tokens are issued by Clerk using industry-standard JWT (JSON Web Tokens) signed with RSA-256 keys. Payment data is handled entirely by Stripe, which is PCI DSS Level 1 certified — the highest level of payment security certification.

While no system is perfectly immune to breach, we take every reasonable precaution to protect your data. If we ever become aware of a data breach that affects your information, we will notify you promptly via the email address associated with your account.

7. Data Retention

We retain your account and vault data for as long as your account is active. If you cancel your subscription, your data remains intact — you simply revert to the free tier. Your vault items are never deleted due to a subscription change.

If you choose to delete your account entirely, we will permanently delete all associated data — including vault items, portfolio history, and personal information — within 30 days. Some data may persist in encrypted database backups for up to 90 days, after which it is automatically purged.

8. Cookies

MetalMetric uses only essential cookies required for the service to function:

Session cookie (__session) — Maintains your authenticated login. Set by Clerk. Expires when your session ends.
Local storage preferences — Stores UI preferences like your selected theme, dismissed notifications, and tier cache. Never transmitted to our servers.

We do not use advertising cookies, analytics cookies, or any form of cross-site tracking cookies.

9. Your Rights

Regardless of where you are located, we extend the following rights to all MetalMetric users:

Access — You can view all data we hold about you at any time through your account dashboard.
Export — Elite users can export their full vault data as CSV. If you need a full data export and are not on Elite, contact us and we will provide it free of charge.
Correction — You can update your personal information at any time through your account settings or by contacting us.
Deletion — You can request complete deletion of your account and all associated data by emailing us. We will process the request within 30 days.
Portability — Upon request, we will provide your data in a standard, machine-readable format (CSV or JSON).

To exercise any of these rights, email us at the address listed below.

10. Children's Privacy

MetalMetric is not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that a child under 18 has created an account, we will promptly delete the account and all associated data.

11. Changes to This Policy

If we make material changes to this privacy policy, we will notify you by email at least 14 days before the changes take effect. Minor clarifications or formatting changes may be made without notice, but the effective date at the top of this page will always reflect the latest revision.

We will never retroactively weaken your privacy protections without your explicit consent.

12. Contact Us

If you have questions about this privacy policy, your data, or anything else, reach us at:

Email:
Website: metalmetric.com

We aim to respond to all privacy-related inquiries within 48 hours.