Security & Privacy
Your data, your control
Synero is built with security and privacy at every layer — from authentication to storage to how we interact with upstream AI providers.
Your data stays yours
Queries and responses are stored securely and are only accessible to your account. We never share your data with third parties or use it for purposes beyond serving your requests.
No model training on your queries
Your queries are not used to train any AI models — not ours, and not any upstream provider's. Your conversations remain private and are never fed back into model training pipelines.
Row-level security
Every piece of data — queries, responses, configurations, presets, ratings — is protected by row-level security policies. Only the authenticated owner can read or modify their own records.
Encrypted in transit and at rest
All communication between your browser and Synero is encrypted via TLS. Data at rest is stored in encrypted databases with Supabase's managed infrastructure.
Secure authentication
Synero uses Supabase Auth with support for email/password and social sign-in providers. Sessions are managed with secure, httpOnly cookies and automatic token refresh.
API key isolation
API keys are scoped to individual accounts and can be revoked at any time. Each key is hashed before storage — we never store plaintext API keys in our database.
Upstream AI providers
Synero routes queries to four AI providers via their commercial APIs. Here is how each handles data:
Infrastructure
- Hosted on Vercel with global edge network and automatic HTTPS
- Database and authentication powered by Supabase with managed PostgreSQL
- Billing and payments handled securely by Stripe — Synero never sees your card number
- No third-party analytics trackers beyond Google Analytics 4
Have a security question or concern? Reach out at [email protected]