This Privacy Policy explains how personal information is collected, used, stored, and disclosed in connection with NautilusTrader and related websites, services, and accounts operated by Nautech Systems Pty Ltd (“Nautech Systems”, “we”, “us”, or “our”). This policy provides transparency regarding our data practices and applies only to information collected by Nautech Systems. It does not apply to third-party services, platforms, or websites that may be linked to or used in conjunction with NautilusTrader.

This Privacy Policy applies to visitors to NautilusTrader websites, users who create accounts or access portals operated by Nautech Systems, and communications with Nautech Systems (including email and support requests). This policy does not apply to third-party exchanges, venues, brokers, platforms, or services not operated by Nautech Systems.

We collect personal information that is reasonably necessary for the operation, administration, and improvement of NautilusTrader and related services.

3.1 Information You Provide Directly
Depending on how you interact with us, this may include name, email address, account credentials, billing or payment-related details (where applicable), and information provided through support requests or communications. We do not require users to provide personal information to access or use the open-source NautilusTrader software itself.

3.2 Information Collected Automatically
When you visit our websites or access our services, we may automatically collect limited technical information such as IP address, browser type, device information, pages accessed, interaction data, and log or diagnostic information. This information is used for security, operational, and performance purposes.

We process personal information only where a lawful basis exists. Depending on the context, this may include:

• Performance of a contract or steps taken prior to entering into a contract (such as account creation and management);
• Our legitimate interests in operating, securing, and improving our services, where those interests are not overridden by user rights;
• Compliance with legal obligations; and
• User consent, where required by applicable law (for example, in relation to certain cookies or similar technologies).

We use personal information for legitimate purposes consistent with the legal bases described above, including managing user accounts, providing access to services, communicating with users, processing payments where applicable, maintaining system security, improving documentation and tooling, and complying with legal or regulatory obligations. We do not sell personal information.

Our websites may use cookies or similar technologies to support essential functionality, security, and basic analytics. Cookies may be used to maintain session state, improve site performance, and detect misuse or abuse. Users may disable cookies in their browser settings, though doing so may affect website functionality. Additional information is provided in our Cookie Policy, where applicable.

We do not disclose personal information except in limited circumstances, including:

• To service providers who assist us in operating our services, subject to appropriate confidentiality and data protection obligations;
• To related entities, where access or processing is reasonably necessary for limited operational, administrative, security, or compliance purposes, and only in a manner consistent with this Privacy Policy;
• Where required by law, regulation, or legal process; or
• To protect the rights, property, or safety of Nautech Systems, our users, or others.

Personal information is not disclosed for advertising or marketing purposes, and related entities do not use personal information for independent or unrelated purposes.

We take reasonable technical and organisational measures to protect personal information against unauthorised access, misuse, loss, or disclosure. Personal information is retained only for as long as necessary to fulfil the purposes described in this policy, unless a longer retention period is required or permitted by law.

Personal information may be processed or stored in jurisdictions outside a user’s country of residence. Where such transfers occur, we rely on recognised transfer mechanisms or safeguards permitted by applicable data protection laws, such as adequacy decisions or contractual protections, to ensure an appropriate level of data protection.

Depending on applicable law, users may have rights to access, correct, delete, or restrict processing of their personal information, to object to certain processing activities, to request data portability, and to withdraw consent where processing is based on consent. Users may also have the right to lodge a complaint with a relevant supervisory authority. We aim to respond to valid requests within a reasonable period, generally within 30 days, subject to applicable legal requirements.

In the event of a data breach involving personal information, we will comply with applicable data breach notification obligations under relevant laws and regulations, including notification to authorities or affected individuals where required.

NautilusTrader may be used in conjunction with third-party services not operated or controlled by Nautech Systems. We are not responsible for the privacy practices of such third parties, and users should review their respective privacy policies.

This Privacy Policy may be updated from time to time. Updated versions will be published as appropriate. Material changes will be communicated where required by applicable law.

Questions regarding this document may be directed to privacy@nautechsystems.io.