← Home

Trust & Security

How ManagerAI protects your business, your customers, and your reputation when the AI is operating on your behalf. No legalese — what we actually do, what we don't do, and where we are on the compliance roadmap.

What we do

🛡

Nothing posts without your approval (default)

Every AI draft — review reply, social post, email, customer SMS — lands in your manual approval queue first. The AI can never speak for your business until you explicitly say yes.

  • Approval queue gates every generated piece of content
  • Edit-in-place before approving — your changes train the AI
  • Bulk approve / reject is opt-in per content type, never default
🧠

Auto-approve is opt-in AND earned

You can opt specific content types into auto-approve to skip the queue — but only after you've manually approved 10 of that type. The AI has to earn trust on your real voice before going autonomous.

  • 10-approval threshold per content type (configurable up)
  • Hard blocklist — crisis responses, price changes, hiring posts NEVER auto-approve regardless
  • Reversible any time in Settings → Auto-approve
🔒

AES-256 encryption for every stored credential

API keys, OAuth tokens, app passwords — everything sensitive gets encrypted at the application layer before it touches the database. Plus full-disk encryption on the underlying Postgres host.

📋

Append-only audit log

Every security-sensitive action (invites, integration changes, account exports, plan changes) writes an immutable row with actor + IP + user-agent. Available to admin via /admin/audit-log.

👤

You own your data, period

GDPR Art. 20 (data portability) and Art. 17 (right to erasure) are first-class features, not legalese.

  • One-click JSON export at /account/export
  • Account deletion at Settings → Danger Zone cascades through every table
  • Audit log records preserved with actor ID nulled (security retention)
🛟

AI Receptionist warmup gate

When the AI auto-replies to customer SMS, the first 50 messages stay in your manual queue even if you opt into auto-send. You verify tone + facts on real customers before the AI goes live.

🚫

Business-only AI

The Anthropic Claude prompts are constrained to business operational tasks. The AI won't engage with off-topic requests, won't hallucinate prices it doesn't know, won't share customer data with anyone outside your account.

🌐

No silent data sharing

We don't sell or share your generation data with third parties. Your review content + customer messages go to Anthropic per-request (as part of the AI generation) but are not stored by them under the Anthropic API terms.

Compliance roadmap

We're candid about what's shipped vs in-progress vs on the roadmap. Buyers asking about SOC 2 / HIPAA / SAML during procurement — this is the honest answer.

✓ Shipped
AES-256 at-rest encryption for sensitive fields
✓ Shipped
TLS in transit (Vercel default)
✓ Shipped
Audit log infrastructure (append-only, admin-readable)
✓ Shipped
GDPR Art. 20 data export
✓ Shipped
GDPR Art. 17 account deletion (cascades)
✓ Shipped
Sentry error monitoring
✓ Shipped
Per-user + per-IP rate limiting
✓ Shipped
Email verification + password reset flows
✓ Shipped
Role-based access control (Owner / Manager / Admin)
⏳ In progress
Penetration testing report
Scheduling Q3 with external firm
⏳ In progress
SOC 2 Type I
Vendor selection underway; ~6 months to attestation
○ Roadmap
SAML / SSO
Mid-market segment trigger — when first 10+ employee prospect appears
○ Roadmap
HIPAA BAA
Healthcare segment opt-in only
○ Roadmap
Data residency (EU region)
EU customer trigger
○ Roadmap
ISO 27001
Enterprise segment trigger

Need our security review documentation?

We provide vendor security questionnaire responses, our DPA, and current sub-processor list on request. Same-day turnaround during business hours.

Request documentation →