How we protect your data

Every table that holds your data has Row Level Security rules attached, enforced by the database itself (Postgres). On every single query, the database checks that the row belongs to your user ID before it returns anything.

This matters because the protection sits below the app. Even if a bug in the user interface tried to ask for someone else's deal, the database would refuse. It is not a check we can forget to write into a screen.

• All traffic between your browser and our servers is encrypted with HTTPS / TLS.
• The database and the document storage volumes are encrypted at rest by the cloud provider.
• Uploaded documents (deal packs, NDAs, supporting files) live in private storage buckets. They are never publicly listable or downloadable; the app generates a short-lived, single-use signed link when you open a file.

• Passwords are stored as one-way hashes. They cannot be read back — not by us, not by anyone with database access. That is why a forgotten password requires a reset rather than a lookup.
• You can sign in with Google instead of a password if you prefer.
• Password resets are sent by email and expire quickly.

We think it's important to be straight about this, because every SaaS works the same way and most won't say so out loud.

Through the app: the admin panel only manages accounts. Admins can reset a password, change an email address, grant or revoke admin access, and delete a user. There is no screen anywhere in the app that lists other people's deals, contacts or documents. We have not built one and don't intend to.

At the infrastructure level: as with every hosted service you've ever used (your bank, your email, Slack, Notion), staff with backend access could in principle read raw database rows. Backend access is restricted to operational needs — backups, recovery, debugging a specific issue you've asked us to look at — and is not used for browsing customer content.

What we don't claim: we don't offer end-to-end encryption. True E2E would mean we couldn't deliver server-side features the product depends on (sharing, NDA workflows, search, AI extraction). If E2E is a hard requirement for you, this isn't the right tool — and we'd rather you know that up front.

When you share a deal with someone, we generate a unique link tied to that share. Recipients only see the specific deal you've shared with them — never your wider pipeline. NDA signatures are recorded and stored in the same private storage as the rest of your documents.

If you believe you've found a security vulnerability, please email security@landxcapital.co.uk. We'll acknowledge your report, investigate, and keep you posted.