Privacy Policy

• Account info. Email address you use to sign in. We use passwordless magic-link sign-in; we do not collect or store a password.
• Subscription info. If you start a paid subscription, we receive a Stripe customer ID, subscription status, and your billing email. Card details (number, CVC) are handled directly by Stripe; we never see or store them.
• Watchlist. Cuts you pin are stored server-side against your account so they sync across devices. Up to eight items per account.
• Usage data. Vercel Analytics records aggregate page views and navigation patterns server-side without setting any cookies in your browser. Aggregated only; not tied back to a specific subscriber in any reporting we generate.
• Cookies. A session cookie that keeps you signed in. See cookies policy for the full list.

• Run your account and let you sign in.
• Bill your subscription and stay compliant with tax law.
• Make the product better. Knowing which pages get used (and which don't) tells us where to invest.
• Send you product emails you've opted into. We never sell your address.

The shortest list we can keep it. Each is a vendor we use to run the service, not a partner we sell data to.

• Stripe (Ireland / United States) for subscription billing and payment processing.
• Vercel (United States) for hosting the web app.
• Fly.io (United States) for hosting the data API.
• Cloudflare (United States) for DNS, CDN, and inbound email routing for the meatread.com domain.
• Resend (United States) for sending transactional email (sign-in links, billing receipts) and the optional Sunday newsletter to subscribers who opted in.
• Anthropic (United States) as the AI model vendor used internally to produce the daily morning note, per-cut commentary, and the Sunday weekly read. The inputs we send are market-data context (prices, deltas, public news headlines) and do not include personally identifiable information.
• Yahoo Finance (Yahoo / United States) for currency reference rates (EUR/USD, USD/CAD) and live cattle/hog futures data used in margin calculations. No personal data is sent.

Each vendor processes your data only to provide its service to us, under a Data Processing Agreement that obliges them to standard security practices. We process customer data under the legal basis of contract performance (operating your subscription) and legitimate interest (improving the product). EU/UK customers have the rights described under "Your rights" below; we'll honor data-subject access and deletion requests through any of these vendors as needed.

We do not sell your data. We do not run third-party ad trackers. We do not share usage data with marketing networks.

You can request a copy of everything we hold on you, ask us to correct it, or delete it entirely. Email support@meatread.com and we'll respond within 30 days. If you're in the EU or UK, this is your GDPR right of access, rectification, and erasure. If you're in Canada, this is your PIPEDA right of access and correction.

Quebec residents (Law 25). In addition to the rights above, you may: request your personal information in a structured, commonly used technological form (data portability); request de-indexation or anonymization of personal information that is no longer necessary for the purpose it was collected; and be informed of the use of automated decision-making that affects you. We do not use automated decisions about subscribers: the morning note, per-cut commentary, and weekly read are generated from public USDA market data, not from your personal information.

Privacy officer. The person responsible for the protection of personal information at MeatRead is reachable at support@meatread.com. We'll respond to data-subject requests within 30 days.

• Account data: until you delete your account.
• Billing records: 7 years after your last invoice (Canadian + US tax law).
• Usage data: 24 months, then aggregated and the row-level data is destroyed.

Sign-in is passwordless: a one-time link is emailed to you and expires in 15 minutes. Sessions are short-lived signed tokens (HS256 JWTs) delivered as HttpOnly, Secure, SameSite=Lax cookies. All traffic is HTTPS end to end. Operational access to subscriber data is restricted to a small number of named operators.

When we change this policy in any material way, you'll get an email. The "Last updated" date at the top tells you when.

Privacy questions: support@meatread.com. General contact: support@meatread.com.