Security & Privacy

Built for confidential client documents.

You're handing us contracts, SOWs, and internal briefs. Here's exactly how we protect them — and what we don't do with them.

Your files are private

Source documents and generated outputs live in private storage buckets. There are no public URLs. Downloads use short-lived signed links that only you can generate.

Per-user access control

Every job, file, extracted fact, and output row is gated by your user ID at the database level (Postgres Row-Level Security). Other users — including paying customers on the same instance — cannot see or query your data.

Your content is never used to train AI

Document text and voice transcripts are sent to Google Gemini, OpenAI, and ElevenLabs through their paid APIs. Per each provider's API terms, paid API inputs are not used to train their models. PlaybookGenerator does not train any models on your data either.

Encrypted in transit and at rest

All traffic is HTTPS. Files are encrypted at rest by the storage layer. Database connections are TLS-only.

Authentication required

Uploads, processing, downloads, and the assistant chat all require a signed-in session. Sign-in supports email/password and Google OAuth.

You can delete anything, anytime

Delete a job and its source files plus generated outputs are removed from storage and the database. There is no soft-delete or hidden archive.

Where your data goes

1. Upload. Your file goes directly to a private storage bucket scoped to your account.
2. Extraction. We extract text from the file on our server and send it to the AI provider (Google Gemini or OpenAI, via the Lovable AI gateway) over an encrypted connection to identify facts and generate your document.
3. Storage. The generated output and extracted facts are saved back to your private workspace — only you (and admins, for metadata only) can see them.
4. Optional voice chat. If you use the Talk feature, audio streams through ElevenLabs over WebRTC. Their API terms also exclude training on customer audio.

What we don't pretend to be (yet)

We'd rather be upfront than oversell. PlaybookGenerator is a young product:

We do not currently hold SOC 2, ISO 27001, HIPAA, or GDPR DPA certifications. If your team requires one of these before uploading, email cpandonis@outlook.com first.
Files are encrypted at rest but not end-to-end encrypted — we have to read them to process them.
There is no automatic deletion schedule yet. Files stay until you delete them.
Some documents shouldn't be uploaded to any third-party tool without a signed agreement first — for example, government-classified material, regulated health records (HIPAA), or client work covered by an NDA that forbids sub-processors. I don't take on data-processing agreements for these, but I'm happy to support as a consultant under NDA — email cpandonis@outlook.com to discuss.