Security & Privacy
Your support data is yours. We keep it safe.
FyneDesk is built on SOC 2 certified infrastructure with encryption at rest and in transit, row-level data isolation, and full audit trails on every plan — including Free.
Encryption at rest and in transit
All data is encrypted using AES-256 at rest and TLS in transit. Every request between your browser, your customers, and our servers travels over an encrypted connection.
Row-level data isolation
Every organisation's data is logically isolated using Supabase Row Level Security (RLS) at the database level. Your tickets, contacts, and knowledge base are completely invisible to other organisations — enforced in the database, not just the application layer.
Hosted on SOC 2 certified infrastructure
FyneDesk runs on Supabase, a SOC 2 Type II certified cloud provider with redundant storage for high availability and data durability. FyneDesk itself is not independently SOC 2 certified.
Role-based access control
Three distinct roles — Admin, Agent, and End User — with clearly scoped permissions. Admins manage users and settings. Agents handle tickets and content. End Users can only see their own submissions.
Full audit trail
Every action taken on a ticket — status changes, assignments, comments, edits — is logged with a timestamp and the user responsible. Available on all plans, including Free.
Data ownership and portability
You own your data. Admins can export all tickets, contacts, and records at any time. Admins can also permanently delete their organisation and all associated data from Admin Settings.
About AI and your data
FyneDesk uses Anthropic's Claude to power ticket summaries, suggested replies, and suggested resolutions. When the AI processes a ticket, the relevant content is sent to the Claude API in real time.
Anthropic's API terms prohibit using API inputs and outputs to train their models without explicit consent. Your ticket data is not used to train any AI model.
If you have questions about how AI processes your data, contact us at support@fynedesk.io.
Your data does not train AI models.
Security & privacy questions
Your data is stored on infrastructure provided by a SOC 2 Type II certified cloud provider with redundant storage to ensure durability and availability. All data transmission is encrypted using TLS 1.3.
No. Your ticket content is sent to Anthropic's Claude API to generate summaries and suggested replies in real time, but it is not used to train Anthropic's models. Anthropic's API data usage policies prohibit using API inputs and outputs for model training without explicit consent. Your support data stays yours.
Access to customer data by FyneDesk staff is limited to what is necessary to provide support and maintain the service. We do not access your data for marketing purposes, and we do not sell or share your data with third parties for their use.
Yes. Admins can permanently delete their organisation directly from Admin Settings. This removes all tickets, contacts, knowledge base articles, and team members. You'll be asked to confirm by typing your organisation name. This action cannot be undone.
FyneDesk targets high availability using redundant, cloud-hosted infrastructure. Custom SLA agreements are available on Enterprise plans. Contact us at support@fynedesk.io for details.
SSO (Single Sign-On) is available on Enterprise plans. Contact us to discuss your requirements.
If you discover a potential security vulnerability, please report it responsibly to support@fynedesk.io. We review all security disclosures promptly and will keep you informed as we investigate and address the issue.
Questions about security or data handling? Email us at support@fynedesk.io.