- We do not require registration. We hold no account data about you.
- We do not sell your data to anyone.
- Our server logs your IP address and browser type automatically - we cannot turn this off, and we retain it for up to 90 days for security purposes.
- Google Fonts are loaded from Google's CDN - Google may log your IP when serving those files.
- Affiliate partner links (Interactive Brokers, TradingView, etc.) use their own tracking cookies if you click them. We receive an anonymous referral signal - we never see who you are.
- If we add advertising (e.g. Google AdSense, Microsoft Advertising) it will be disclosed in this policy before it goes live.
- If you are in the EU/EEA, you have full GDPR rights - see Section 9.
Global Markets Dashboard ("we", "us", "our") operates the website at gmdmarkets.com (the "Service"). We are the data controller for any personal data processed in connection with the Service.
This Privacy Policy explains what information we collect when you visit the Service, how we use it, with whom we share it, and what rights you have regarding your data. It applies to all visitors regardless of location.
If you have questions about this policy, see Section 13 for contact details.
2.1 - Data you provide directly
The Service does not require account registration, login, or any form submission. We do not ask for your name, email address, or any other personally identifying information as part of using the dashboard.
2.2 - Data collected automatically (server logs)
When you visit any page on our Service, our web server automatically records:
- Your IP address
- Browser type and version (User-Agent string)
- Operating system
- The pages you visit and the time of each visit
- The referring URL (the page you came from, if any)
- HTTP response codes and data transferred
This is standard behaviour for all web servers and cannot be disabled. This data is used solely for security, abuse prevention, and aggregate traffic analysis (e.g. "how many visitors today"). We do not use server logs to build personal profiles.
2.3 - WebSocket connection data
The dashboard uses a SignalR WebSocket connection to stream live market data to your browser. This connection carries only market data (prices, yields, sentiment scores). No personal data is transmitted over the WebSocket in either direction.
2.4 - Data we do NOT collect
- We do not collect names, email addresses, phone numbers, or postal addresses
- We do not collect financial information, trading activity, or portfolio data
- We do not use fingerprinting, canvas fingerprinting, or cross-site tracking
- We do not create individual user profiles or track you across other websites
We process automatically collected data for the following purposes and legal bases:
- Service delivery (legal basis: legitimate interests) - routing your browser's request to the correct page and delivering the dashboard content.
- Security and abuse prevention (legal basis: legitimate interests) - detecting and blocking malicious traffic, DDoS attempts, and automated scraping that could degrade service for all users.
- Aggregate analytics (legal basis: legitimate interests) - understanding how many visitors use the Service, which pages are popular, and where visitors come from in aggregate, without identifying individuals.
- Legal compliance (legal basis: legal obligation) - retaining logs as required by applicable law and providing them to authorities if compelled by a valid legal order.
We do not use your data for automated decision-making or profiling that produces legal or similarly significant effects.
4.1 - Our own cookies
Our servers set no cookies on your device - no session cookie, no authentication cookie, no tracking cookie. The dashboard is fully read-only and requires no login.
We use browser localStorage (not a cookie) to store lightweight
UI state on your device only:
cookieNoticeAck- set to"1"when you dismiss the cookie notice bar, so it does not reappear. Never transmitted to our servers.
This data never leaves your device and can be cleared at any time via your browser's developer tools (Application → Local Storage → Clear).
4.2 - Third-party cookies
Third parties whose code or links appear on the Service may set their own cookies. See Section 5 (Third-Party Services) and Section 6 (Affiliate Links) for details. A summary:
-
Google Fonts - fonts are served from
fonts.googleapis.com. Google may log your IP and browser type when delivering font files. Google's privacy policy applies: policies.google.com/privacy. - Affiliate partner links - clicking a partner link (Interactive Brokers, TradingView, tastytrade, CoinGecko) redirects you to that partner's site, where their cookies and tracking apply. See Section 6.
- Advertising networks - if advertising is enabled on the Service, ad networks will set cookies for ad targeting and frequency capping. See Section 7.
4.3 - Managing cookies
You can control and delete cookies at any time through your browser settings. Blocking all cookies will not prevent you from using the core dashboard - it is fully functional without cookies. Links to cookie management guides for major browsers:
The Service fetches live market data from the following third-party APIs. These calls are made server-side - your browser does not contact these services directly, and your IP address is not shared with them.
-
Yahoo Finance (
query1.finance.yahoo.com) - equity index prices, FX rates, commodity futures, VIX, and session-status data. Our server queries Yahoo Finance; your browser only receives the processed result. -
Alpaca Markets (
data.alpaca.markets) - cryptocurrency prices (BTC, ETH, XRP, SOL, DOGE, AVAX, USDT, USDC). Server-side only. -
Federal Reserve FRED (
api.stlouisfed.org) - US Treasury yields, Fed Funds Rate, ECB Deposit Rate, and international government bond yields. Server-side only. -
CNN Business (
production.dataviz.cnn.io) - Fear & Greed Index composite score, Put/Call ratio, and VIX 50-day moving average. Our server polls the CNN data API; your browser does not contact CNN directly. Server-side only. -
Finnhub (
finnhub.io) - high-impact US economic calendar events and breaking financial news headlines. Server-side only. -
Anthropic Claude AI (
api.anthropic.com) - when a new market news article is received from Finnhub, our server sends the article's headline and summary to Anthropic's Claude AI for automated severity classification. This determines whether a Breaking News alert is shown on the dashboard. No user data or personal information is ever sent to Anthropic. Only publicly available news content is processed. See Anthropic's Privacy Policy for how they handle API data.
For a full description of each data provider - what they supply, how often it refreshes, and links to their own terms - see our Data Sources page.
The following third-party service is loaded client-side (your browser contacts it directly):
-
Google Fonts - font files (Google Sans, Roboto Mono) are
loaded from Google's CDN. Google may receive your IP address and User-Agent.
You can prevent this by blocking
fonts.googleapis.comin your browser or using a content blocker; the dashboard will fall back to system fonts.
The Partners & Programs panel on the dashboard displays links to third-party financial platforms including Interactive Brokers, TradingView, tastytrade, and CoinGecko. Some of these are affiliate links.
When you click an affiliate link:
- You are redirected to the partner's website via a tracking URL
- The partner records the click and may set a tracking cookie in your browser
- If you subsequently register or purchase through the partner, we may receive a commission or referral fee - at no cost to you
- We receive only an anonymous commission signal. We do not receive your name, email address, or any other personal data from the partner
Affiliate commissions help fund the free operation of this Service. Our editorial selection of which partners to feature is independent of whether an affiliate relationship exists.
Each partner's own privacy policy governs data collected on their site after you click through.
The Service currently contains an ad placement zone reserved for future use. No advertising network is active at this time. This section will be updated before any advertising goes live.
When advertising is enabled, the following will apply and this policy will be updated accordingly:
- The advertising network (e.g. Google AdSense, Microsoft Advertising) will be identified by name in this section
- The network may use cookies and device identifiers to serve interest-based advertisements and measure ad performance
- You will be able to opt out of interest-based advertising through the network's own opt-out tools (e.g. Google Ad Settings, Microsoft opt-out) or through the Digital Advertising Alliance opt-out portal
- Where required by law (e.g. for EEA visitors under GDPR), consent will be obtained before advertising cookies are set
- Server access logs - retained for up to 90 days, then automatically purged. Logs associated with a confirmed security incident may be retained longer in connection with that investigation.
- Browser localStorage - remains in your browser until you clear it. We do not control this; you can delete it via your browser's developer tools or privacy settings at any time.
- Affiliate click data - we retain only aggregated, anonymous commission records. No personal data is retained on our side in connection with affiliate clicks.
When data is no longer needed for the purpose for which it was collected, it is securely deleted or anonymised.
9.1 - GDPR (European Economic Area & UK)
If you are located in the EEA or the United Kingdom, you have the following rights under the General Data Protection Regulation (GDPR) and UK GDPR:
- Right of access - request a copy of personal data we hold about you
- Right to rectification - request correction of inaccurate data
- Right to erasure ("right to be forgotten") - request deletion of your data
- Right to restriction - request that we limit how we process your data
- Right to data portability - receive your data in a structured, machine-readable format
- Right to object - object to processing based on legitimate interests
- Right to lodge a complaint - with your national supervisory authority (e.g. the ICO in the UK: ico.org.uk)
Given that we collect minimal personal data (primarily server logs containing your IP address), the practical scope of most of these rights is limited for this Service. To exercise any right, contact us using the details in Section 13.
9.2 - CCPA (California residents)
If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):
- Right to know - what personal information we collect, use, disclose, and sell
- Right to delete - request deletion of personal information we have collected
- Right to opt out - we do not sell personal information; this right is therefore satisfied by default
- Right to non-discrimination - we will not discriminate against you for exercising any CCPA right
9.3 - All users
Regardless of your location, you can at any time:
- Clear your browser's localStorage to remove any UI preference data we may have stored
- Use your browser's private/incognito mode to prevent any local storage
- Block Google Fonts via a content blocker to prevent that data transfer
- Opt out of affiliate tracking by not clicking partner links
Our web servers are located in [Your Hosting Region, e.g. "the European Union" or "the United States"]. If you access the Service from outside this region, your data (including your IP address in server logs) will be transferred to and processed in that region.
Google Fonts are served from Google's global CDN infrastructure. Google may process data in multiple countries. Google's data transfer mechanisms comply with applicable data protection law.
Where we transfer personal data from the EEA or UK to countries outside those regions, we ensure appropriate safeguards are in place (e.g. EU Standard Contractual Clauses or UK International Data Transfer Agreements).
The Service is not directed at children under the age of 13 (or 16 in the EEA). We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us using the details in Section 13 and we will delete it promptly.
We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. For material changes - particularly the introduction of advertising, new analytics tools, or new data-sharing arrangements - we will display a notice on the Dashboard before the change takes effect where reasonably practicable.
We encourage you to review this page periodically. Your continued use of the Service after any change constitutes acceptance of the updated policy.
To exercise any of your privacy rights, ask a question about this policy, or report a concern, please contact us:
