Privacy Policy
Last updated: July 17, 2026
SoleOS (“the Service”) is operated by Quantivo AI, LLC, a Delaware limited liability company (“we”, “us”). This policy explains what data we collect when you use SoleOS, why we collect it, and the choices you have. The short version: we read the metrics you explicitly connect, we use them only to show you your own dashboard, and we never sell your data.
Data we collect
Account data. Your email address and authentication identifiers when you create an account.
Connected provider data.When you connect a provider (such as RevenueCat, Stripe, PostHog, Google Analytics, Search Console, Supabase, or Firebase), we access it with the narrowest scope the provider offers — read-only wherever available — and store aggregate metrics about your own projects: revenue figures, subscription counts, visitor counts, and similar time-series numbers. Where you enable event webhooks, we store the events you send us (for example, “a signup occurred”), including any payload fields your integration includes.
Credentials. API keys and OAuth tokens you grant us are stored encrypted (Supabase Vault) and are used exclusively to fetch the data described above. We never log or display them after entry.
Usage data. We collect basic product analytics about how the SoleOS app itself is used (pages viewed, features used) to improve the Service.
How we use data
To provide the Service: rendering your dashboard, computing projections, and sending you the notifications and digests you configure. We do not sell or rent your data, use it for advertising, or share it with third parties except the subprocessors below.
Subprocessors
We rely on a small set of infrastructure providers to run the Service: Vercel (hosting), Supabase (database, authentication, storage), Stripe (billing), Resend (transactional email), and PostHog (product analytics for SoleOS itself). Each processes data only as needed to provide their function.
Data retention and deletion
You can disconnect any provider at any time, which stops all further collection from it; you can additionally revoke SoleOS from the provider’s own security settings (we support and encourage provider-side revocation). To delete your account and all associated data — including stored metrics, events, and encrypted credentials — email us at support@soleos.app and we will complete deletion within 30 days.
Security
Credentials are encrypted at rest, database access is scoped per workspace with row-level security, and provider access uses the minimum scopes available. No method of transmission or storage is 100% secure, but we design the Service so that a compromise of any one layer exposes as little as possible.
International transfers
Our infrastructure providers may process data in the United States and the European Union. By using the Service you consent to this processing.
Changes
We will post any changes to this policy on this page and update the date above. For material changes we will notify you by email.
Contact
Quantivo AI, LLC (Delaware, USA) · support@soleos.app