Product Privacy Report

xStock Monitor Privacy Policy

xStock Monitor ingests regulated market feeds and internal research memos to surface actionable alerts. The safeguards below summarize how market intelligence, trading strategies, and identity data are handled across the platform.

Jump to Policy Back to XM LLC

Effective: April 4, 2024 · Next independent review: October 2024

Data Sources

Real-time equities/derivatives feeds delivered through customer-managed VPN tunnels.
Internal investment memos and risk ratings synced via hardened SFTP pull jobs.
User profile data limited to role, desk, and regulatory restrictions; no personal trading history is collected.

Processing Controls

Each data source receives a dedicated tokenization policy with irreversible surrogate keys.
Alert payloads store only context needed for supervision and expire within 30 days unless escalated to audit.
Model training environments are segmented between surveillance and research workloads to maintain SOX and Chinese Wall constraints.

Security & Access

Conditional access integrates with client IdPs to enforce trader entitlements and MFA.
Feed ingestion endpoints employ signed requests, hardware root of trust, and immutable audit logs retained for seven years.
Quarterly red-team exercises validate insider threat monitoring, with findings shared under NDA.

Customer Oversight

Clients configure custom retention, jurisdiction, and trade surveillance rules before activation.
Daily privacy posture reports summarize ingestion status, alerting volume, and outstanding purge tickets.
Dedicated XM operator ensures alignment with SEC, FINRA, and SOX requirements throughout the deployment lifecycle.

Questions about this policy? Email privacy@xm-llc.com or call (202) 555-0184 to reach the XM privacy office in Milford, Connecticut.