Privacy Policy

Last updated: April 2026

What we collect

Account data (name, email, role), payment metadata (handled by Stripe — we never see your card number), and the business data you enter into the platform (projects, budgets, contracts, vendors, etc.). We also log basic telemetry (page loads, API calls) to monitor performance.

What we do with it

We use your data solely to provide, secure, and improve the service. We never sell your data. We do not use your business data to train AI models outside your tenant.

Sub-processors

We use a small, vetted list: Stripe (payments), Anthropic (AI features, tenant-scoped), DigitalOcean (hosting), Postmark or SendGrid (transactional email). Full list available on request.

Your rights

You can export, amend, or delete your data at any time from the admin console or by email.

Security

TLS 1.3 in transit. Encryption at rest on managed Postgres. Secrets stored in DigitalOcean App Platform encrypted env vars. Audit log on every mutation. Annual penetration test on the Enterprise tier.

Contact

Privacy questions? info@linosconsulting.com.