Qubit Quant
WakuWakuMulticurrency grid · FreeUpStakeXAUUSD range breakout · ProTridentMulti-strategy suite · Flagship
PerformanceRaw numbers · all three
Partner BrokerFunded ProgramSoonPricingFAQ
Sign in
Expert AdvisorsWakuWaku FreeUpStake ProTrident FlagshipPerformance Raw numbers
Partner BrokerPricingFunded ProgramSoonFAQSign in
Home/Privacy Policy
Legal

Privacy Policy

Last updated: 3 July 2026

This Privacy Policy explains what personal data Qubit Quant collects, why we collect it, how it is used, shared, and retained, and the rights you have over it. It is written to describe the personal data our systems store and why, and we update it when our data practices change. Read it alongside our Terms, Risk Disclosure, Refund Policy, and Cookie Policy.

⚠On-chain payment and payout data — transaction hashes and wallet addresses — lives on public blockchains. That data is permanent, public, and outside our control. To the maximum extent permitted by applicable law, we cannot edit, hide, or delete anything recorded on a blockchain, and no right of erasure can reach it.

1Who We Are and What This Policy Covers

"Qubit Quant", "we", "us", and "our" mean [[ENTITY]], the software publisher that operates this website, the free quant tools, and the authenticated dashboard through which users license and pay for our MetaTrader 5 Expert Advisors (including Trident, UpStake, and the free WakuWaku) (together, the "Services"). "You" means any person who visits the site, joins the waitlist, signs in, licenses the software, pays, or takes part in our affiliate program.

We are a software publisher — nothing more. To the maximum extent permitted by applicable law, Qubit Quant is not a broker, dealer, fund, investment adviser, portfolio manager, signal service, or copy-trading provider, and nothing in the Services is financial, investment, legal, tax, or trading advice. We publish trading software and analysis tools. Trading decisions, broker relationships, and account funding are yours alone, and you assume all trading risk. See our Risk Disclosure and Terms.

Data controller. For personal data processed through the Services, the controller is [[ENTITY]]. Where the General Data Protection Regulation (EU GDPR) or the UK GDPR applies, references to those terms carry their statutory meaning. Privacy questions and rights requests go to legal@qubitquantglobal.com.

This Policy applies only to data we control. It does not cover third-party services you choose to use — your MetaTrader 5 broker, your crypto wallet or exchange, or any site we link to — each of which has its own privacy practices we do not control and are not responsible for.

2Information We Collect

We collect only the categories below, and we collect them because a specific part of the Services needs them to function.

  • Account identity (from Google sign-in) When you sign in, Firebase Authentication (Google) issues us a user identifier (uid) and mirrors your email address, display name, and profile picture URL from your Google account. We store these against your dashboard record. We do not receive or store your Google password.
  • Waitlist data If you join the waitlist, we store your email address, the page you signed up from, your browser's user-agent string, the referring URL, and submission timestamps. The waitlist exists for a single email when Trident lists on the MQL5 Marketplace.
  • Broker / MT5 account numbers If you register accounts to run the EA, we store the MetaTrader 5 (or other broker) account numbers you add, along with any label you give them and their active/verified status. If you go through the IC Markets linking wizard, we store the IC Markets account number you self-report. Account numbers are numeric identifiers; they are not login credentials, and we never ask for or store your broker or trading passwords.
  • License and support codes We generate and store your activation key (format QQ-…) and a short human-readable support code (format SC-…). The full value of any revoked activation key is never returned to anyone, including you.
  • EA licence telemetry When running, our EAs periodically send your activation key and the trading account number and status to our servers so we can permit or deny live trade-opening. We use this only to enforce licensing, and we never receive your broker login or trading passwords.
  • Crypto payment data If you pay in USDT, we store the on-chain transaction hash you submit, the chain and token used, the transfer amount, your plan, and the payment status. Payments are wallet-to-wallet to our own receive address; we do not use a payment processor and we never see or hold your card details, bank details, or wallet private keys.
  • Affiliate program data If you apply to the affiliate program, we store your social handles and a free-text description of how you will promote, the terms version you accepted, and — once approved — your public referral code and the USDT payout wallet address you provide. We keep an immutable audit trail of payout-wallet changes and of commissions and payouts. A change to your payout wallet is recorded for money-routing integrity.
  • Referral attribution When someone arrives through an affiliate's /r/<code> link, we set a first-party attribution cookie and, on their first signed-in dashboard load, record which affiliate code and click time is attributed to that account. This attribution is written once and never overwritten.
  • Support and communications If you email us, or an admin emails you, we process the contents of those messages to respond and keep an audit record of administrative actions taken on an account.
  • Technical and log data Our hosting and infrastructure process standard technical data — IP address, user-agent, request metadata — as an ordinary part of serving and securing web traffic.

What we deliberately do not collect. We do not collect special-category (sensitive) personal data, we do not ask for government IDs, and we do not collect broker or wallet credentials. Our design keeps all data flowing through a single server-side chokepoint so we can cap, validate, and scrub it.

3How We Use Your Information

We use personal data only for the purposes below, and only to the extent needed for each.

  • Provide the Services Authenticate you, run your dashboard, mint and manage your activation key, and gate license unlocking to users with an eligible paid plan or a verified broker link.
  • Manage broker accounts Record the accounts you register and let an admin verify them (including via the IC Markets partner portal) so the EA can be gated to verified, active accounts.
  • Process and verify payments Take direct USDT payments, re-derive payment truth on-chain before crediting a plan, and prevent a single transaction from being reused to credit more than one plan.
  • Run the affiliate program Attribute referrals, accrue and settle commissions, and record payouts to affiliates' provided wallets.
  • Communicate with you Respond to support requests, send service and account messages, and — where permitted — waitlist updates about the MQL5 listing.
  • Security, fraud prevention, and record-keeping Detect and prevent abuse, enforce our Terms, keep audit logs of administrative actions, and comply with legal obligations.

No solely automated decisions with legal effect. We do not make solely automated decisions that produce legal or similarly significant effects on you without human involvement: payment credits, refunds, and licence unlocks involve human (admin) review, and automated checks — for example blocking a reused transaction hash or a suspected fraud — are subject to human review on request via legal@qubitquantglobal.com. We do not sell your personal data, and we do not "share" it for cross-context behavioural advertising, as those terms are used under applicable law.

4Legal Bases (GDPR / UK GDPR)

Where the EU GDPR or UK GDPR applies, we rely on the following legal bases, mapped to purpose.

  • Performance of a contract To create your account, mint and manage your license key, register and verify broker accounts, process payments, and provide the affiliate program you signed up for. Article 6(1)(b).
  • Legitimate interests To secure the Services, prevent fraud and abuse, keep audit and integrity records, and operate and improve our tools — balanced against your rights. Article 6(1)(f).
  • Consent For non-essential cookies or analytics where consent is required, and for optional marketing where applicable. You may withdraw consent at any time without affecting prior processing. Article 6(1)(a).
  • Legal obligation To meet accounting, tax, and other legal requirements, and to respond to lawful requests. Article 6(1)(c).

Where we rely on legitimate interests, you may ask for details of the balancing assessment via legal@qubitquantglobal.com.

5Sharing & Third Parties

We do not sell personal data, and we do not trade it for advertising. We share personal data only with the service providers and counterparties that make the Services work, and only as described here.

  • Google / Firebase Firebase Authentication and Firestore, operated by Google, are our core infrastructure. They handle sign-in and store the dashboard, waitlist, license, payment, and affiliate records described above, acting as our processor under our instructions.
  • IC Markets (partner broker) If you use the IC Markets linking flow, we verify the account number you provide against IC Markets' partner portal. IC Markets is an independent broker and its own controller; we do not control its processing of your account or trading data.
  • Public blockchains and on-chain tooling To validate payments and record payouts, we read public blockchain data via viem (EVM) and the TronGrid API (Tron). Transaction hashes and wallet addresses you submit are, by nature, public and permanent on-chain and are not private to us.
  • Email delivery We use an email provider to send account, support, and waitlist messages.
  • Hosting and infrastructure Our website hosting and supporting infrastructure process technical and log data to serve and secure the Services.
  • Legal, safety, and transfers We may disclose data where required by law, to enforce our Terms, to protect our rights, users, or the public, or in connection with a merger, acquisition, or asset transfer — in which case this Policy continues to govern the data transferred.

To the maximum extent permitted by applicable law, we are not responsible for the independent acts or omissions of third parties, brokers, wallets, exchanges, or blockchain networks you interact with through or alongside the Services.

6Cookies & Tracking

We keep cookies to the minimum the Services need. We use a small number of first-party cookies and browser storage, described in full in our Cookie Policy.

  • Authentication Firebase Authentication persists your signed-in session in your browser so you stay logged in. This is essential to the dashboard.
  • Affiliate attribution Arriving through an affiliate link sets a first-party, httpOnly attribution cookie (qq_ref). It is not readable from JavaScript, is time-clamped, and is cleared once your first dashboard load consumes it, so it cannot carry over to another account on the same browser.
  • Analytics Where we use analytics, we do so consistent with the Cookie Policy and, where required, with your consent.

You can control cookies through your browser settings; disabling essential cookies may break sign-in and the dashboard. See the Cookie Policy for the current, itemised list.

7Data Retention

We keep personal data only as long as needed for the purpose it was collected, or as required by law.

  • Account data Kept for the life of your account. Deleting your Google sign-in does not automatically erase your dashboard record; ask us at legal@qubitquantglobal.com to delete it.
  • Activation keys Retained as an audit trail, including after revocation. When a user record is deleted, historical keys are stripped of identifying data but the key string and status are preserved for dispute resolution.
  • Payment and payout records Retained for accounting, tax, anti-fraud, and audit purposes. On-chain data referenced by these records (transaction hashes, wallet addresses) is permanent on the blockchain and cannot be deleted by us.
  • Affiliate records Applications, commissions, payouts, and wallet-change logs are retained as an immutable financial audit trail.
  • Waitlist Kept until the single MQL5-listing email is sent or you ask to be removed, whichever is first.
  • Admin audit logs Retained to evidence administrative actions and security decisions.

Where deletion is not possible (for example, legal-retention obligations or immutable on-chain records), we will restrict processing to those purposes to the maximum extent permitted by applicable law.

8Your Rights

Subject to applicable law and to the exceptions below, you may have the right to access, correct, delete, restrict, or object to processing of your personal data, to receive a portable copy, and to withdraw consent. To exercise any right, email legal@qubitquantglobal.com; we may need to verify your identity first.

Limits on these rights. To the maximum extent permitted by applicable law, rights of erasure and rectification do not extend to data we are legally required to retain, to audit and anti-fraud records, or to immutable blockchain data (transaction hashes and wallet addresses), which we cannot alter or remove.

Complaints. If you are in the EU or UK, you may lodge a complaint with your local supervisory authority — in the UK, the Information Commissioner's Office (ICO). We ask that you contact us first at legal@qubitquantglobal.com so we can try to resolve it directly.

9California Privacy Rights (CCPA / CPRA)

We do not sell or share your personal information. As those terms are defined under the California Consumer Privacy Act, as amended, we do not sell personal information and do not share it for cross-context behavioural advertising, and we have not done so in the preceding twelve months.

Subject to verification and legal exceptions, California residents may request to know the categories and specific pieces of personal information we hold, request deletion or correction, and are entitled not to receive discriminatory treatment for exercising these rights. Submit requests to legal@qubitquantglobal.com. The categories we collect, the purposes, and the third parties we disclose to are set out in the sections above.

10Security

We apply reasonable technical and organisational measures. All data flows through server-side API routes that verify each request's identity token before any read or write; client applications cannot read or write our database directly. Access is least-privilege, revoked sign-ins cannot reuse cached tokens, sensitive actions require recent re-authentication, and destructive admin actions are logged. We never store broker or wallet credentials or card details.

No guarantee of absolute security. To the maximum extent permitted by applicable law, no method of transmission or storage is completely secure, and we do not warrant that the Services or your data will be free from unauthorised access, loss, or interference. You are responsible for safeguarding your own Google account, devices, wallet keys, and activation key.

11International Transfers

Qubit Quant is operated by two engineers, and our processors — notably Google/Firebase — operate globally. Your personal data may be processed in countries outside your own, including the United States, whose laws may differ from those where you live.

Safeguards. Where personal data is transferred out of the EEA or UK, we rely on lawful transfer mechanisms such as adequacy decisions or Standard Contractual Clauses (and the UK Addendum) where applicable. By using the Services, and to the extent permitted by applicable law, you acknowledge these cross-border transfers. On-chain data is inherently global and public by design.

12Children

The Services are not for children. They are intended only for adults who are of legal age to enter contracts and to trade in their jurisdiction, and are not directed at anyone under 18 (or the higher age of majority where they live). We do not knowingly collect personal data from children.

If you believe a child has provided us personal data, contact legal@qubitquantglobal.com and we will delete it to the extent required by applicable law.

13Disclaimers, Liability & Data-Protection Rights

As-is and as-available. To the maximum extent permitted by applicable law, the Services, the free tools (which are provided in beta), the published reports, and this website are provided "as is" and "as available", without warranties of any kind, whether express, implied, or statutory, including any implied warranties of merchantability, fitness for a particular purpose, accuracy, non-infringement, uninterrupted operation, or profitability.

No advice; you assume all trading risk. Nothing in the Services, and nothing in this Policy, is financial, investment, legal, or tax advice. Past performance — including any backtest reconciled to a raw MT5 report using Dukascopy tick data — does not predict future results. To the maximum extent permitted by applicable law, you assume all risk of trading and of running any software on any account.

Your data-protection rights are unaffected. Nothing in this Policy limits or excludes any liability or right that cannot be limited or excluded under data-protection law, including your right to compensation under Article 82 GDPR / UK GDPR. Any liability limitation in our Terms does not apply to claims arising from our processing of your personal data.

Other claims. For any claim that does not arise from our processing of your personal data, our total aggregate liability to you is limited as set out in the Limitation of Liability section of our Terms of Service, which controls.

14Changes to This Policy

We may update this Policy from time to time. When we do, we will revise the "last updated" date at the top and, for material changes, take reasonable steps to notify you. Your continued use of the Services after an update takes effect means you accept the revised Policy, to the extent permitted by applicable law. Review it periodically.

15Contact

Data controller and contact. The controller of your personal data is [[ENTITY]]. For any privacy question, or to exercise a right, contact legal@qubitquantglobal.com. This Policy is governed by the laws of [[JURISDICTION]], to the extent permitted by applicable law and without prejudice to any mandatory data-protection rights you hold where you live.

Where we are required to appoint a representative under Article 27 GDPR / UK GDPR, their details are: [[EU_UK_REPRESENTATIVE]].

Read this Policy together with our Terms, Risk Disclosure, Refund Policy, and Cookie Policy, which together govern your use of the Services.

See also
Terms of ServiceRisk DisclosureRefund PolicyCookie Policy

Questions about this document? Email legal@qubitquantglobal.com.

Qubit Quant

Hedge-fund-grade tools at retail price. We test on our own money before we ask for yours.

Expert Advisors

  • WakuWaku
  • UpStake
  • Trident
  • Performance

Product

  • Pricing
  • Partner Broker
  • Funded ProgramSoon
  • FAQ

Account

  • Sign in
  • Dashboard
  • Affiliate program

Legal

  • Terms of Service
  • Privacy Policy
  • Risk Disclosure
  • Cookie Policy
  • Refund Policy

© 2026 Qubit Quant. All rights reserved.

Proof over promises · Trading involves risk. Past performance does not guarantee future results.