Data we collect
- Account data — your email address, hashed password (if you set one), and Google profile (if you sign in with Google: name, email, profile picture URL, Google user ID).
- Uploaded files — the tabular datasets you submit for reconciliation. Stored encrypted at rest in Cloudflare R2.
- Usage data — reconciliation sessions, mappings, credit-ledger entries, API key activity.
- Payment data — handled entirely by Stripe; we store only the Stripe customer ID and payment-intent identifiers, never your card details.
How we use it
- To provide the reconciliation Service you requested.
- To generate AI insights, which involves sending sampled rows / column metadata (not the raw file) to Anthropic’s Claude API.
- To process payments via Stripe.
- To send transactional emails (account verification, scheduled reconciliation reports) — never marketing emails.
Sub-processors
- Neon (Postgres database — SOC 2, ISO 27001)
- Cloudflare R2 (object storage — SOC 2)
- Stripe (payments — PCI DSS Level 1)
- Anthropic (AI insights — sampled metadata only)
- Google (OAuth sign-in, if you choose it)
Retention
Files and session results are retained as long as your account is active. Closing your account anonymises your records (the email is replaced with a deleted-account placeholder) and triggers deletion of associated files within 30 days. Credit-ledger entries are retained for 7 years for tax/audit purposes.
Your rights
You can export, correct, or delete your data at any time from Settings. For requests we can’t honour through the UI, email privacy@reconai.app.
Security
All connections use TLS 1.2 or newer. Files are encrypted at rest in R2. Passwords are hashed with bcrypt. We don’t use your data to train models.
This skeleton is a starting point. Have a lawyer or compliance service (Termly, GetTerms, etc.) finalise the language before launching publicly.