Privacy Policy

When you create an account, we store your email address and, if you use Google OAuth, your name and avatar URL. We store the projects, tasks, artifacts, and time entries you create in the app.

We collect basic usage analytics (page views, feature usage) to understand how the product is used. We do not sell or share this data with third parties.

When you connect Linear, Figma, Jira, or Slack, Hierarch accesses data from those services on your behalf using OAuth tokens stored securely in our database. We request the minimum scopes necessary and only read data you explicitly view in the app. See the integration docs for the specific scopes and data accessed per service.

Integration tokens are stored server-side in Supabase with row-level security. They are associated with your user account and are never shared across users.

Your data is stored in Supabase (hosted on AWS). The application is deployed on Vercel. Both services operate under their own privacy and security policies. Data is encrypted in transit (TLS) and at rest.

Your data exists as long as your account does. If you delete your account, all associated data (tasks, projects, artifacts, time entries, integration tokens, and uploaded files) is permanently deleted.

We use essential cookies for authentication session management. We do not use advertising cookies or third-party tracking cookies.

You can export, modify, or delete your data at any time through the app settings. You can delete your entire account, which permanently removes all associated data. If you need assistance, contact privacy@hierarchical.app.

We'll update this page when the policy changes and note the date at the top. For material changes, we'll notify you by email.