Enterprise-Grade Protection

Your data.
Always secure.

We take security seriously. From end-to-end encryption to GDPR compliance, your privacy is our top priority.

End-to-End Encryption

All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Your conversations are protected from unauthorized access.

GDPR Compliant

Full GDPR compliance. Right to access, rectify, and delete your data. Data stored in EU-compliant data centers.

Zero AI Training

We NEVER train AI models on your data. Your conversations remain private and are not used for model improvement.

Secure Infrastructure

Hosted on enterprise-grade infrastructure with 99.9% uptime SLA. Regular security audits and penetration testing.

Breach Notification

In the unlikely event of a breach, we notify affected users within 72 hours and provide detailed incident reports.

Two-Factor Auth

Optional 2FA via authenticator apps. Add an extra layer of security to your account with TOTP-based authentication.

How We Handle Your Data

Transparency in our data practices.

What We Store

  • Account information (email, name, password hash)
  • AI conversation history (prompts and responses)
  • Usage metrics (request count, timestamps)
  • Billing information (via secure payment processors)

What We Don't Store

  • Full credit card numbers (handled by Stripe/Lemon Squeezy)
  • Browser history or tracking cookies
  • Screenshots or sensitive page content
  • Personally identifiable information beyond what you provide

Data Retention

  • Free Plan: 7 days of history
  • Starter Plan: 30 days of history
  • Pro Plan: 90 days of history
  • Business Plan: Unlimited history
  • Deleted accounts: 30-day grace period, then permanent deletion

Third-Party Services

We work with trusted partners who share our commitment to security.

OpenAI & Google Gemini

AI model providers. Your prompts are processed securely via API.

View Policy →

Lemon Squeezy / Stripe

Payment processing. PCI-DSS Level 1 compliant.

View Policy →

Brevo (Sendinblue)

Transactional emails. GDPR compliant email service.

View Policy →

Found a Security Vulnerability?

We take security seriously. If you've discovered a vulnerability, please report it to our security team immediately.

Report Vulnerability

We offer bug bounties for verified security vulnerabilities.