Security & trust
What we can see, what we can't — in plain language
No legalese wall, no vague reassurances. Here's exactly how your information is accessed, who touches it, and how long we keep it.
Access, honestly
You grant read-only access — and only to what you choose
When you connect an account, it's read-only by default. We can look at what we need to do the work; we can't change or post anything without your sign-off.
What we can see
- The accounts you choose to connect — and only those
- The metrics and content needed to do the work you asked for
- What we produce for you, so we can show you the results
What we can't
- Anything you haven't explicitly connected
- Your passwords — we never see or store them
- Permission to change or post anything without your approval
- The right to share your data with anyone for any other purpose
You can revoke any connection at any time — from your side, instantly, with no notice to us.
Who touches your data
The companies that help run the service
We use a small set of trusted providers to run the platform. Each handles a specific job, and only the data needed for it.
Hosting & delivery
Vercel (edge/CDN)
Database
Supabase (Postgres)
Sign-in & accounts
Clerk
Payments
Stripe — card data never touches our servers
Resend
AI processing
Vetted model providers, scoped to your task
How long we keep things
We keep your information only as long as we need it to do the work and meet our legal obligations. Ask us to delete your data and we will, wherever we're not legally required to retain it.
How it's protected
Data is encrypted in transit and at rest. Access is scoped to the task at hand, and payment details go straight to our payment processor — they never touch our servers.
Want the full detail? Read our Privacy Policy and Terms of Service.
Trust is earned, not assumed.
Start with 3 free audits — read-only, no card, no commitment. See how we work before you connect anything.
Results or your money back · no card required