Privacy Policy

What we collect

• Email address — used only for magic-link sign-in and billing-related transactional emails.
• Customer source data you upload (support transcripts, chat logs, reviews, pasted utterances). Encrypted at rest with AES-256-GCM using a per-deployment encryption key.
• AI endpoint URL and auth header — auth headers are encrypted at rest, decrypted only at the moment of HTTP call to your AI.
• Telegram chat ID — required to deliver nightly regression alerts.
• Audit results — the personas, conversation transcripts, and judge scores from runs against your AI.

What we never do

• We never train AI models on your source data. The data is used only to synthesize your personas and run your audits.
• We never share your data with third parties beyond the LLM provider (Anthropic Claude) that processes audit conversations, and your customer AI endpoint that you explicitly connect.
• We never sell data, and we never enrich it with third-party trackers.

Data subprocessors

• Supabase — Postgres database + authentication. Encrypted at rest.
• Anthropic — Claude Haiku 4.5 processes persona synthesis and audit judging. Your source data is sent in API calls but is not retained for training (per Anthropic's commercial API terms).
• Stripe — handles all payment data. We never see your card details.
• Resend — delivers magic-link emails.
• Telegram Bot API — delivers regression alerts to the chat you connect.
• PostHog — product analytics (page views, conversion events). No PII tracked beyond your `distinct_id`.

Deletion

You can delete all source data, personas, endpoints, and audit results from Settings. For full account erasure (GDPR-style), use the "Delete account" control in Settings — it removes every row in the database keyed to your user ID.

Contact

Privacy questions can be raised through the in-app support channel in Settings.