Back to home

Privacy Policy

Last updated: May 17, 2026

Plain-English version while we're in beta.

We'll replace this with a formal policy before going to public launch. The short version of how we handle your data is below.

1. What we collect

  • Account info — your email, name, and (if you use email signup) a hashed password.
  • The data you enter — revenue, expenses, deals, invoices, contracts.
  • Connected services — if you connect YouTube, we store an encrypted refresh token so we can sync your AdSense revenue.
  • Basic logs — request times, IP addresses (briefly), and error traces, used to keep the Service running.

2. What we don't do

  • We don't sell your data.
  • We don't share your data with advertisers.
  • We don't train AI models on your private information.
  • We don't store your AdSense numbers anywhere other than your private Revenue tab.

3. AI features

When you use the contract analyzer, receipt OCR, or email-to-deal extractor, the content you submit is sent to Google's Gemini API for processing. Google's privacy terms apply to that processing. We send only what's needed to perform the analysis, we don't store the AI conversation, and we don't use it to train anything.

4. Security

  • Sensitive credentials (YouTube refresh tokens, Stripe keys) are encrypted at rest using AES-256-GCM.
  • Passwords are hashed with bcrypt (cost 12). We never store plaintext passwords.
  • All traffic is over HTTPS.
  • The database is hosted on Supabase. Access is limited to the application.

That said: we're a small beta product. We're not SOC 2 certified, and you should treat anything you put here with the level of trust you'd give a small startup. If you wouldn't put it in a private Notion doc, don't put it here yet.

5. Your rights

You can delete your account from Settings at any time. When you do, we delete your account and associated data within 30 days. If you want a copy of your data first, email the founder.

6. Cookies

We use one essential cookie: an HTTP-only session cookie that keeps you logged in. No tracking cookies, no analytics cookies, no third-party ad cookies.

7. Changes

If we change anything material about how we handle data, we'll email you. The "last updated" date at the top reflects the most recent change.

8. Contact

Email the founder directly at mahipalsinghrajput476@gmail.com. There is no support team or ticket system — your message comes straight to me.

See also: Terms of Service