Privacy Policy
We collect only what we need to run CuteMarkets and protect the service.
Last updated: June 15, 2026
This policy explains what data we (Auralis Group GmbH, operating CuteMarkets) collect when you use cutemarkets.com and our services, and what we do not do.
What we collect
We use first-party analytics to improve our product where applicable. We also use Reddit Ads measurement tools to measure ad campaign visits and purchases. For our own page-view and product-event analytics, we use a random visitor ID stored in your browser. Our server stores a salted hash of that ID, not the raw browser value.
- Page-view and visit patterns for CuteMarkets pages
- Anonymous unique visitor counts based on the hashed first-party ID
- Referrer page where available from your browser
- Reddit Ads pixel events for ad measurement when Reddit's script loads in your browser
- Server-side Reddit Ads purchase conversion events with hashed email and account identifiers for ad measurement and deduplication
- Product events such as signup progress, API key creation or copy actions, docs code-copy actions, and checkout progress
- IP address, user agent, and a hashed browser fingerprint used for abuse monitoring, bot filtering, analytics deduplication, and growth measurement
This data is handled to improve CuteMarkets, protect the service, measure ads, and understand growth. We do not sell our analytics data.
User accounts and API access
When you create a CuteMarkets account or use the API, we process data needed to run the service:
- Account data: email address, password (stored using standard secure hashing on our servers, we never store your password in plain text), subscription or plan tier, email verification status, and account creation date.
- API keys: we store identifiers and metadata, including prefix, plan, label, active status, and all timestamps we maintain for each key (such as creation and last used), so you can manage keys in the dashboard. You can view your full API key in the product whenever you need it, and you can rotate or revoke keys if a secret is exposed.
- Sessions: after login, short-lived access tokens and refresh tokens valid for up to 90 days may be kept in your browser's local storage so you stay signed in. A session value for the docs playground may be kept in session storage until you close the tab or log out.
- API usage: we process requests you make to our API (including technical data such as timestamps, endpoints, status codes, latency, IP address, user agent, account, and API key metadata as needed for rate limits, billing, security, analytics, and reliability).
Cookies and local storage
We use a minimal set of cookies and similar technologies where needed for session continuity or understanding how visitors use CuteMarkets. The analytics visitor ID is stored in local storage so we can estimate returning visitors; the per-tab analytics session ID is stored in session storage. We also create a first-party browser fingerprint from technical browser characteristics such as user agent, language, platform, screen dimensions, time zone, and device capability hints. The browser fingerprint is hashed before storage. These first-party values support product measurement, bot filtering, abuse monitoring, and security for CuteMarkets. Reddit's advertising script may use its own cookies or similar technologies for ad measurement when it is available in your browser. Server-side Reddit purchase conversion events do not require Reddit's browser script to run.
Infrastructure and security
We use Cloudflare for parts of our infrastructure. Cloudflare may process data such as IP addresses and request headers to provide security, reliability, and performance (for example DNS, edge, and threat protection). Cloudflare acts as a processor for these purposes.
CuteMarkets may also store IP addresses and request headers in its own backend analytics and security logs for first-party product analytics, abuse monitoring, bot filtering, rate-limit diagnostics, and service reliability.
What we do not do
We do not:
- Sell analytics data
- Use CuteMarkets' first-party browser fingerprint for third-party advertising profiles
- Share your API keys or account password with advertising providers
- Use Reddit Ads data to change API access, rate limits, or account security decisions
IP address storage and browser fingerprinting are used inside CuteMarkets' first-party analytics and security systems. Infrastructure providers (see Infrastructure and security) may also process connection data, including IP addresses, to protect and deliver the service.
Your rights
Under the GDPR, where applicable, you may have the right to:
- Access your personal data (Article 15 GDPR)
- Rectify inaccurate data (Article 16 GDPR)
- Erasure ("right to be forgotten") (Article 17 GDPR)
- Restrict processing (Article 18 GDPR)
- Object to processing (Article 21 GDPR)
- Data portability where processing is based on contract or consent (Article 20 GDPR)
You may also lodge a complaint with a supervisory authority in your country of residence.
Contact and data controller
The controller responsible for processing personal data in connection with CuteMarkets is Auralis Group GmbH. The managing partner and responsible person is Daniel Ratke. For questions, to exercise your rights, or for privacy concerns:
Company details are listed on our Imprint.