Privacy Policy
This policy explains what data Sottos.ai handles in the web layer and why it is necessary to run subscriptions, downloads, support, and desktop session sync.
What we collect
CodeNova [legal suffix] operates Sottos and collects account identifiers, billing metadata, desktop session metadata, support messages, and product activity needed to operate authentication, subscriptions, downloads, support, security, and fraud prevention.
Processors
Clerk processes authentication data, Stripe processes payment data, Supabase hosts the application's database, and Resend handles transactional email delivery. Each provider stores the minimum data required to operate its function.
How we use data
Billing data is used to determine plan status, entitlement windows, refunds, cancellations, and support outcomes. Desktop session metadata is used to keep signed-in desktop clients synchronized with the authenticated account.
AI configuration
AI agent configuration data is used to resolve backend-owned model, provider, and feature settings for supported product agents. User-specific overrides are sparse and tied to your account when configured.
Support requests
Support and contact form submissions are used to answer your request and may be retained with account and billing context when needed for fraud prevention, security, or dispute handling.
Retention
If you close your account, we may retain limited records required for billing history, fraud prevention, or legal compliance. User records in the app are soft-deleted rather than immediately destroyed from every table.