Data Security & Privacy FAQ

Security and privacy matter — especially for IT teams managing sensitive company data. Here's how OpsGrip handles it.

Where Is My Data Stored?

Your data is stored in Supabase (PostgreSQL database) hosted in the US West (Oregon) region. The application is hosted on Vercel with servers in multiple global regions.

Is My Data Encrypted?

In transit: Yes. All data between your browser and OpsGrip is encrypted using TLS/HTTPS.

At rest: Yes. Supabase encrypts data at rest using AES-256 encryption.

Does OpsGrip Sell My Data?

No. Absolutely not. OpsGrip does not sell, share, or monetize your data in any way. Your data is used exclusively to provide the OpsGrip service to you.

What Third Parties Have Access?

Only the services required to run OpsGrip: - Supabase — Database hosting and authentication - Vercel — Application hosting and deployment - Anthropic — AI processing for OGI features (your questions are processed but not used to train AI models) - Stripe — Payment processing (billing data only)

No advertising networks, no analytics trackers selling data, no data brokers.

How Does OGI Handle My Data?

When you use Ask OGI or other AI features: - Your question and relevant context are sent to the Anthropic API - Anthropic processes the request and returns a response - Anthropic does not use your data to train their models - OGI only accesses data within your organization

What About Row-Level Security?

OpsGrip uses Supabase's Row-Level Security (RLS) policies on every table. This means: - Users can only access data belonging to their organization - Database-level enforcement — not just application-level - Even if there were a bug in the application code, RLS prevents cross-organization data access

Can I Export My Data?

Yes. Go to Settings → Data & Privacy to export your organization's data. You own your data and can take it with you at any time.

Cookies

OpsGrip uses only essential cookies for authentication and session management. No tracking cookies, no advertising cookies, no third-party analytics cookies.

Tips

  • If your company has specific security requirements or needs a security questionnaire completed, email support@opsgrip.com
  • Row-Level Security is one of the strongest data isolation methods available — it's the same approach used by enterprise SaaS platforms
  • For teams with strict data residency requirements, let us know — we track these requests for future infrastructure planning
Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.

Still need help? Contact Us Contact Us