Security & Privacy

Discretion is not a marketing word.

The people who coordinate aircraft, yachts, and residences need to know exactly where their data lives, who can see it, and what we promise in writing. Here is what we promise.

Posture

  • Multi-tenant by organization. Your data is logically isolated from every other tenant by row-level security policies enforced at the database layer.
  • TLS in transit. Encryption at rest is provided by the underlying Supabase Postgres cluster.
  • No public booking pages, no SEO-indexed asset detail, no third-party tracking on signed-in surfaces.
  • Authentication via short-lived email codes and Google OAuth — no passwords stored.
  • Audit log of every meaningful change, retained for the lifetime of the organization.

Data

  • Hosted in a Panama-billing jurisdiction. EU and US data residency available on the Family Office and Bespoke tiers.
  • Export your data at any time in machine-readable formats.
  • On-prem and dedicated-tenant options available for Family Office and Bespoke engagements.

Promises

  • We never sell, share, or analyze your data for any party outside your organization.
  • Support staff access requires explicit, time-bounded, logged permission.
  • You can delete your organization and all associated data on request — within seven days of request, irreversibly.

Need more detail before you proceed?

We are happy to share our infrastructure overview and answer specific questions on a call.

Request a security briefing