Privacy Policy

• The VisiHub web application (app.visihub.app)
• The VisiHub website (visihub.app)
• The VisiHub API
• Reconciliation controls

When you create an account, we collect your email address and name. If you sign in via GitHub, we receive your GitHub profile information.

Datasets, spreadsheets, and charts you upload are stored on our servers. Public data is visible to everyone. Private data is accessible only to you and your collaborators.

If you use reconciliation controls, you provide API keys for services like Stripe, QuickBooks, and Mercury. These are stored encrypted and used only to fetch data for reconciliation runs. We never share credentials with third parties.

Transaction data fetched during control runs is processed in memory, stored as run artifacts, and retained for audit purposes. We do not use your financial data for any purpose other than providing the reconciliation service.

• Payment information is collected and processed by Stripe
• We receive your email address and subscription details
• We do not store credit card numbers

• Account data: Retained while your account is active
• Public datasets: Retained indefinitely (snapshots are immutable)
• Private datasets: Deleted when you delete them, or when your account is deleted
• Reconciliation artifacts: Retained for audit trail; deleted when you delete the control
• Financial credentials: Deleted when you remove the connection or delete the control
• Payment records: Retained for accounting and legal purposes

• All data in transit is encrypted via TLS
• Financial credentials are encrypted at rest
• Reconciliation proofs use Ed25519 signatures and BLAKE3 hashing
• Access to production systems is restricted and audited

• Export your data at any time via the API
• Delete your datasets, controls, and connections
• Delete your account (which removes all private data)
• Request a copy of any personal data we hold about you