sigmanomics (“us”, “we”, or “our”) operates the https://sigmanomics.com website (the “Service”).
Your privacy is important to us. It is sigmanomics’s policy to respect your privacy regarding any information we may collect from you across our website, https://sigmanomics.com, and other sites we own and operate.
We only ask for personal information when we truly need it to provide a service to you. We collect it by fair and lawful means, with your knowledge and consent. We also let you know why we’re collecting it and how it will be used.
If you have additional questions or require more information about our Privacy Policy, do not hesitate to contact us at [email protected].
________________________________________
1. Who We Are
Controller: Sigma nomics LLC (“Sigmanomics”, “we”, “our”, “us”)
Registered office: 859 Willard Street, Quincy, MA 02169
Contact: [email protected]
EU representative (GDPR Art. 27): DPR EU Ltd., 32 Fitzroy Square, London W1T 6EX, United Kingdom
Data Protection Officer: [email protected]
2. Scope of This Policy
This Policy explains how we collect, use, disclose, and protect personal information when you:
visit sigmanomics.com or any sub‑domain (the “Site”);
subscribe to our newsletters, alerts, or premium research;
interact with our ads, social‑media pages, or analytics tools; and
communicate with us by email, phone, or other channels.
3. What Personal Data We Collect
| Category (CPRA) | Examples | Sources |
|---|---|---|
| Identifiers | Name, email address, device IDs, IP address, cookie ID, online alias | Provided by you; collected automatically |
| Internet / network activity | Pages viewed, time spent, referring/exit URLs, ad interactions, clickstream data | Collected automatically via cookies, pixels, log files |
| Commercial information | Subscription level, purchase history, billing data (last four digits of card) | Provided by you; payment processors |
| Geolocation data | Approximate location (city/region) inferred from IP | Collected automatically |
| Inference data | Segment tags (e.g., “crypto‑interested”), interest profiles | Created by us or by advertising partners |
| Professional information (optional) | Employer, job title, trading experience | Provided by you via forms |
We do not knowingly collect or process sensitive personal information as defined under CPRA (e.g., precise geolocation, health data, race, or biometric identifiers).
4. Legal Bases for Processing (GDPR Art. 6)
| Purpose | Legal basis |
|---|---|
| Site operation & security | Legitimate interests (ensure the Site works, detect fraud) |
| Analytics & performance cookies | Consent (Art. 6 (1) (a)) |
| Email newsletters | Consent; you can withdraw at any time |
| Subscription contracts | Contract performance (Art. 6 (1) (b)) |
| Advertising & marketing | Consent for personalised ads; legitimate interests for contextual ads |
| Compliance & legal obligations | Legal obligation (Art. 6 (1) (c)) |
5. How We Use Personal Data
Provide, maintain, and improve the Site and our services
Personalise content and remember your preferences
Measure the effectiveness of articles and ad campaigns
Send newsletters, market‑analysis updates, or promotional offers you request
Detect, investigate, and prevent fraud or security incidents
Comply with tax, accounting, and other legal requirements
6. Cookies, SDKs & Similar Technologies
We use:
Essential cookies – required for core functionality (e.g., log‑in, load balancing).
Analytics cookies (e.g., Google Analytics 4, self‑hosted Matomo) – help us understand traffic patterns.
Advertising cookies (Google AdSense) – show relevant ads and limit repeat impressions.
You will be shown a Cookie Consent Banner on your first visit in the EEA, UK, or California. You can withdraw or modify consent at any time via the Cookie Settings link in the footer.
Google AdSense notice
We partner with Google to display ads. For more information about how Google uses data when you use our partners’ sites or apps, please visit https://policies.google.com/technologies/partner-sites.
You may opt out of personalised advertising by visiting Ads Settings (https://adssettings.google.com/authenticated). Alternatively, opt out of third‑party personalised ads at www.aboutads.info.
7. How We Share Personal Data
We do not sell personal information for money. We may “share” (as defined by CPRA) identifiers and internet activity with:
Advertising partners (e.g., Google, via AdSense) to serve ads.
Analytics providers (Google Analytics 4, Matomo) to measure Site performance.
Payment processors (Stripe, PayPal) for subscription billing.
Service vendors supporting IT hosting, email delivery, and customer support.
Authorities or legal counsel when required by law or to protect rights.
All vendors are bound by contracts that require GDPR‑compatible safeguards such as Standard Contractual Clauses (SCCs) or certification under the EU‑US Data Privacy Framework.
8. International Transfers
We host data on servers in the United States. When we transfer EEA/UK data outside those regions, we rely on SCCs or an adequacy mechanism (e.g., the EU‑US Data Privacy Framework) and implement supplementary safeguards such as encryption at rest and in transit.
9. Data Retention
We retain personal data only as long as necessary for the purposes described above:
Account and subscription data – for the life of the account + 6 years (tax/audit).
Cookie identifiers – 14 months (Google Analytics default) unless you delete/opt out sooner.
Marketing consent records – 5 years or until consent is withdrawn.
Server logs – up to 12 months for security analysis and diagnostics.
10. Your Rights
EU/UK Residents (GDPR)
Access – obtain a copy of your data.
Rectification – correct inaccurate data.
Erasure – request deletion (“right to be forgotten”).
Restriction – limit processing in specific cases.
Portability – receive data in machine‑readable format.
Object – to processing based on legitimate interests or direct marketing.
Withdraw consent – at any time without affecting prior processing.
California Residents (CPRA)
Right to Know what personal information we collect, use, share.
Right to Delete personal information.
Right to Correct inaccurate personal information.
Right to Opt‑Out of Sale/Sharing of personal information.
Right to Limit Use/Disclosure of Sensitive PI (not applicable here).
Right to Non‑Discrimination for exercising any CPRA rights.
11. Exercising Your Rights
Email us at support@sigmanomics.com with “Privacy Request” in the subject line, or use the Privacy Webform linked in the footer.
California residents may also call our toll‑free line: +1 (888) 555‑0199 or click “Do Not Sell or Share My Personal Information”.
We will verify your identity (e.g., via email confirmation or 2‑factor check) and respond within 30 days (GDPR) or 45 days (CPRA).
12. Security Measures
We employ ISO 27001‑aligned controls, including:
TLS 1.3 encryption in transit; AES‑256 encryption at rest
Firewalls, intrusion‑detection systems, and 24/7 monitoring
Role‑based access control and multi‑factor authentication
Annual penetration tests and vendor risk assessments
Despite these measures, no Internet transmission is 100 % secure, and we cannot guarantee absolute security.
13. Children’s Privacy
The Site is not directed to children under 16. We do not knowingly collect their personal data. If you believe a child has provided us information, contact [email protected] and we will delete it promptly.
14. Changes to This Policy
We may update this Policy from time to time. Material changes will be announced on the Site or by email (for registered users) at least 14 days before they take effect. The “Last updated” date below will reflect the latest revision.
Last updated: 27 June 2025