Built to earn trust, not assume it.
Scalerra handles sensitive commercial data, so privacy, security, and responsible AI are not features — they are the foundation. Here is exactly how we operate.
Encryption
Data is encrypted in transit (TLS) and at rest by our infrastructure providers. Passwords are stored only as salted hashes.
Row-level isolation
Every record is scoped to its owner with row-level security, so your workspace data is only ever reachable by you and those you explicitly share a deal with.
Output up the team, never a camera
Your workspace is yours and portable. On a team, your manager sees the output of your work — deals, drafts, briefs, practice debriefs — to help, never a record of your activity or a raw practice transcript. People are never scored or ranked.
Your data never trains models
Content is sent to AI providers only to generate your result — never to train our models or any provider's foundation models.
Vetted infrastructure
Built on Vercel and Supabase, with a minimal, transparent list of subprocessors.
Minimal data collection
We collect only what the product needs. No ad trackers, no data brokers, no scraping of private individuals.
Privacy & compliance
We align our practices with the GDPR and the principles of the EU AI Act, including transparency, human oversight, and honest communication of AI limitations. The documents below describe how — written plainly, and being finalized with legal counsel.
Security or privacy question?
We welcome scrutiny. Reach our team directly and we will respond.