Your data, protected
We built Ekumene to be trustworthy by design. Here's exactly how we handle your information.
Security practices
Technical measures that protect your data.
Encryption at rest
Sensitive credentials, OAuth tokens, and chat messages are encrypted at the application level. Database storage uses provider-managed encryption.
Encryption in transit
All connections use TLS encryption. Data moving between your browser, our servers, and third-party integrations is encrypted in transit.
No AI training on your data
Your tasks, notes, and personal information are never used to train machine learning models. Your data stays yours.
No data selling
We make money from subscriptions, not surveillance. Your data is never sold to advertisers, data brokers, or anyone else.
Minimal data collection
We only collect data necessary to provide the service. We use privacy-focused analytics (PostHog) for essential product metrics and error tracking (Sentry). No advertising trackers, no fingerprinting, no data sold to third parties.
OAuth-only integrations
We never see your passwords. Todoist and Google Calendar connections use OAuth 2.0 with minimal required scopes.
Compliance & rights
Your rights over your data.
GDPR
We support GDPR rights including data access, portability, and deletion. Export or delete your data directly from Settings, or contact support@ekumene.ai.
CCPA
We support CCPA rights for California residents including access, deletion, and opt-out. See our Privacy Policy for details.
Data portability
Export your data directly from Settings at any time. Export includes your profile, pillars, projects, tasks, conversations, and documents in JSON format.
Right to deletion
Delete your account and all associated data directly from Settings. Deletion from our database is immediate. See Privacy Policy for third-party analytics retention.
Infrastructure
Ekumene runs on Railway (compute) and Vercel (frontend). Both providers maintain SOC 2 Type II certifications for their infrastructure. Data is stored in PostgreSQL with automated backups and point-in-time recovery.
All infrastructure is located in the United States. We do not currently offer data residency options in other regions.
Questions?
For security concerns or questions about how we handle your data, contact us at support@ekumene.ai.
For complete details, see our Privacy Policy.