Skip to content

Security

You're trusting us with more than a resume.

Severance math. Runway numbers. The things you'd only write down at 1am. This page answers the question that actually matters: who can see it, and who can't.

Every claim below maps to a specific control in our code. We keep an internal claims register, audited it in July 2026, and fixed what didn't hold up.

Data access

Who can see what

What you put inYouOffboard staffLUMOAI providers
Your journal
the full text of what you write
Yes

Always.

No

No read access exists in the product.

Partial

Never the full text. Mood and themes only, and only if you opt in.

Partial

Analyzed once for mood and themes, with retention off. Never for training.

Resumes & documents
uploads, drafts, cover letters
Yes

Always.

No

No.

Partial

Only what you share in a chat or run through a resume feature.

Partial

Processed to power tailoring and parsing, with retention off.

Financial entries
severance, runway, budgets
Yes

Always.

No

No.

Partial

Not in its context. It only knows what you type to it.

Partial

Only inside a feature you run, with retention off.

Private messages
your DMs on Offboard
Yes

You and your recipient.

No

No.

No

No.

No

Never sent to AI.

Google Calendar
if you connect it
Yes

Always.

No

No.

No

Excluded from AI context entirely.

No

Never sent to AI models.

One caveat, stated plainly: like any cloud product, our infrastructure provider (Supabase) and the people who hold our service keys could technically access the database. We explain that below, including what stands in the way.

The receipts

Four things we can prove.

Not promises. Controls that live in the code and the database.

Only your account can reach your rows

Row-Level Security is enforced on every sensitive table in our database. Your session can only ever query data that belongs to you.

No admin read paths

There is no screen, role, or query in the product that shows our team your journal, your resume, or your finances. We removed the temptation at the database layer.

Exactly two AI providers

OpenAI, called with retention disabled on every single request, and Anthropic, whose API does not train on customer data. Nothing goes to anyone else.

Delete means delete

Deleting your account removes your database rows and your uploaded files, across every storage bucket. Not just the visible parts.

The honest part

Offboard does not use end-to-end encryption. Our AI features need to read your text as text: the journal can't detect your mood without reading the entry, and the resume tailor can't rewrite a bullet it can't see. That means our servers process your data in readable form, and, like every cloud product, our infrastructure provider and the people who hold our service keys could technically access the database.

We weighed the alternatives. On-device AI isn't good enough yet to do this work. A key that only you hold would mean one forgotten password erases your journal forever, and it would break everything that helps you while you're away, like weekly summaries and interview reminders. So we chose readable processing plus strict access control, and we tell you exactly where the line sits. If that ever changes, it will change on this page first.

What stands between that technical possibility and a person reading your journal: no admin read paths exist in the product, user identifiers are redacted from our server logs, admin actions are written to an audit log, and every sentence on this page is tied to a control in our claims register.

The specifics

Exactly how it works.

The details behind each claim, for anyone who wants to check our work.

Your data, your call

The controls are yours.

  • See and edit everything you've put in, anytime.
  • Delete a single journal entry, a document, or your whole account. Account deletion removes your files too.
  • Export your resumes and documents whenever you want.
  • We don't sell your data. To power AI features, it passes through OpenAI and Anthropic only, under the retention and no-training terms above.

These map to the rights GDPR and CCPA give you, wherever you live.

Found something, or have a question this page doesn't answer? Email info@offboard.co. A human reads it.

Get started

Now you know exactly what you're trusting us with.

That's the deal we think you deserve, especially right now.

Want a person, not the app? Tell us your story.