Privacy Policy for Pip
Last updated: 2026-06-18
Pip (“we”, “us”, “our”) is a futures-trading replay and practice
application developed by Ben Titus (“the developer”). This Privacy
Policy explains what information we collect through the Pip mobile
application (“the App”), how we use it, and the choices you have.
Pip is a simulated practice tool. The App does not execute real
trades, does not connect to a brokerage, and does not move real money.
If you have any questions about this policy, contact us at
bentitus2009@gmail.com.
When you create an account in the App we collect:
- Email address — for sign-in and account recovery
- Display name / username — chosen by you, shown on leaderboards
- Authentication provider identifiers — when you sign in with
Google or Apple, the provider returns a unique account identifier
(Firebase UID) that we use to associate your usage data with your
account
We do not collect your real name, phone number, physical address,
date of birth, social-security number, payment information, or any
brokerage credentials.
1.2 Usage data the App generates
While you use the App we store, on our backend tied to your account
identifier:
- Replay sessions you start (symbol, timeframe, start date)
- Trade actions you take inside simulated replay sessions (entry,
exit, stop-loss, take-profit, position size, P&L — all simulated,
not real)
- Journal entries you write, including any optional screenshots you
attach
- Stats derived from your simulated trading (win-rate, XP, rank,
streak count, account balance — simulated balance, not real
money)
- Notification preferences you toggle (daily-mission reminder time,
weekly-recap day)
- We do not collect or process payment card data inside the App. In-app
purchases (if offered) are handled by the App Store / Google Play;
we receive only the receipt confirmation that an entitlement was
granted.
- We do not collect device location.
- We do not collect microphone audio or photos from your camera roll
except the specific image you select for a journal entry.
- We do not track your activity across other apps or websites.
We use the information described above to:
- Create and maintain your account
- Show your own trading history and stats inside the App
- Synchronize your progress across devices when you sign in
- Send you the opt-in notifications you’ve enabled
- Support leaderboards and community features (only your chosen
display name and aggregate stats are visible to other users; raw
trade data and journal contents are not)
- Detect and prevent abuse of the App (e.g. duplicate-account fraud
on leaderboards)
- Comply with legal obligations
3. Sharing
We do not sell your personal information. We share it with third
parties only in the following limited cases:
3.1 Service providers
We rely on the following providers to run the App. Each handles only
the data needed to perform their function and is bound by their own
privacy commitments:
- Google Firebase Authentication — for sign-in and account
management. Firebase receives your email address and authentication
tokens. See https://firebase.google.com/support/privacy
- Google Sign-In — when you choose to sign in with Google, Google
authenticates you and returns an account identifier
- Apple Sign-In — when you choose to sign in with Apple, Apple
authenticates you and returns a private email relay or identifier
- Hosting provider — our backend runs on commercial cloud hosting.
All session and journal data sent to the backend transits and rests
on infrastructure we operate, encrypted in transit (TLS).
3.2 Legal compliance
We may disclose information when required by valid legal process
(subpoena, court order) or to protect our rights, your safety, or the
safety of others.
3.3 Business transfers
If Pip is ever sold, merged, or acquired, your information may be
transferred to the acquiring entity. You’ll be notified before any
new owner uses your data differently from this policy.
4. Data retention
- Your account data and replay history is retained for as long as
your account exists.
- You can delete your account at any time from the Settings screen.
Upon deletion, your account record and all associated trade /
journal / stats data are removed from our active database within
30 days. Encrypted backups may retain a copy for up to 90 days
before being overwritten.
5. Your rights
You have the right to:
- Access — request a copy of the information we hold about you
- Correct — update inaccurate information from the Settings screen
or by contacting us
- Delete — delete your account and associated data from the
Settings screen at any time
- Withdraw consent — opt out of notifications, leaderboards, and
any other optional features from the Settings screen
- Object / restrict (if you are in the EEA, UK, or California) —
contact us at the email above to exercise rights under GDPR or CCPA
We will respond to verifiable requests within 30 days.
6. Security
We use industry-standard safeguards to protect your information:
- All network traffic between the App and our backend is encrypted
in transit using TLS
- Account passwords (when using email/password sign-in) are managed by
Firebase Authentication, which stores them hashed and salted; we
never see your raw password
- Backend access is restricted to the developer and any contracted
service providers who need it to operate the service
- Data at rest in our database is protected by our hosting provider’s
encryption-at-rest features
No method of internet transmission or electronic storage is 100%
secure. If we ever learn of a breach affecting your data we will
notify you in accordance with applicable law.
7. Children’s privacy
Pip is rated 17+ and is not directed at children under 13. We do
not knowingly collect personal information from children under 13. If
you believe a child under 13 has provided us with personal information,
contact bentitus2009@gmail.com and we will delete it.
8. International users
The App’s backend operates in the United States. By using the App
from outside the United States, you consent to your information being
transferred to and processed in the United States. We apply this
Privacy Policy to your information regardless of where it is
processed.
9. California privacy rights (CCPA)
California residents have additional rights under the California
Consumer Privacy Act, including the right to know what categories of
personal information we collect and the right to deletion. We do not
sell personal information as defined under CCPA. Contact us at the
email above to exercise these rights.
10. EU/UK users (GDPR)
If you are in the European Economic Area or the United Kingdom, the
legal basis for our processing of your data is:
- Performance of a contract — to provide the App functionality
you signed up for
- Legitimate interest — to operate, improve, and secure the App
- Consent — for optional features like notifications, which you
opt into and can revoke at any time
You have additional rights under GDPR including data portability,
the right to object to processing, and the right to lodge a complaint
with your local supervisory authority.
11. Changes to this policy
We may update this policy from time to time. The “Last updated” date
at the top reflects the most recent version. When we make material
changes we’ll notify you through the App before the new policy takes
effect.
Privacy questions, data access requests, deletion requests:
bentitus2009@gmail.com