PlainSight

Privacy

Last updated: 2026-05-11

What we collect

  • The CSV you upload is parsed in your browser. We only receive the aggregated metrics — never your raw transaction rows.
  • For Pro: your Stripe restricted API key is encrypted at rest using Supabase Vault (pgsodium). Decryption only happens server-side during sync.
  • Your email (for Pro sign-in) and standard logs (timestamps, IP, anonymized).

What we do not collect

  • Customer names, email addresses, payment details, or any raw Stripe transaction data is never persisted on our servers.
  • We do not sell or share your data with third parties beyond infrastructure providers (Supabase, Vercel, Anthropic, Stripe).

Contact

Questions? Email carterfletcherdev@gmail.com.