Security
How we handle your data.
The short version: encrypted in transit and at rest, scoped OAuth tokens, no model training on your inputs.
Last updated · placeholder — replace before launch
Connected-account tokens (LinkedIn, X, Instagram) live in Postgres, encrypted at rest with Fernet. Tokens are never sent to the model layer, never logged, and can be revoked from your account settings.
Generated drafts, voice profiles, and brand kits are stored per user. They are not shared across accounts and are not used to train any external model. Anthropic and OpenAI APIs are called with prompt-only payloads.
Found something? Report security issues to security@nicheangle.com. We respond within one business day and acknowledge confirmed reports publicly with your consent.
The formal disclosure policy + bounty terms land before public launch.