Privacy Policy

To run the audits you ask for, deliver reports and alerts, secure the platform, bill paid plans, send transactional email, and improve the product. We do not sell your personal data, ever.

We rely on a small number of vendors to operate the Service:

• Lovable Cloud (Supabase): hosting, database, authentication, storage.
• Stripe: subscription billing, invoices, tax calculation.
• Firecrawl: JS-rendered page crawling for audits.
• Resend: transactional email delivery.
• OpenAI / Google (via Lovable AI Gateway): AI-generated summaries and recommendations.

By default, audit reports are public and shareable via link. They appear in our public gallery. Paid plans can mark reports private. Private reports are visible only to the owner.

Account data is kept while your account is active. When you delete your account, we remove personal data within 30 days, except where law requires us to retain billing records. Public audits remain visible (anonymized) unless you delete them first.

You can access, export, correct, or delete your data at any time. Email privacy@sightline.app and we'll respond within 30 days.

Data is encrypted in transit (TLS) and at rest. Access to production systems is limited to authorized engineers. We use row-level security policies on every user-data table.

We use first-party cookies to keep you signed in. We don't use third-party advertising or tracking cookies. If you sign in with Google, Google may set cookies under its own policy.

Sightline is not intended for users under 16. We don't knowingly collect data from minors.

We'll update this page when our practices change. Material changes will be announced in-app or by email at least 14 days in advance.