Security principles
- Encryption in transit with HTTPS/TLS.
- Encrypted data at rest in managed infrastructure.
- Row-level access controls so users can only access their own data.
- Restricted production access with strong authentication.
- Third-party providers selected for reliability and security posture.
- Your business data is not sold and is not used to train foundation models.
Infrastructure
LancerOS runs on a modern hosted stack including Supabase for database and authentication, Vercel for frontend hosting, and Stripe for billing. AI features use third-party model providers only for the data needed to complete a request, and the product is designed around user-approved actions instead of invisible automated execution.
Data ownership and AI usage
You keep ownership of the client, invoice, and financial data you store in LancerOS. AI features are intended to analyze your business context and draft suggestions for you, but outputs remain suggestions. We do not use your workspace data to train general-purpose AI models.
Responsible disclosure
If you believe you have found a security issue, email support@lanceros.io. Please include clear reproduction steps and avoid accessing data that does not belong to you.
Support and response
LancerOS is early, but reliability matters. We aim to respond to support questions within 1 business day, maintain public-facing legal and trust pages, and keep the changelog visible as the product moves toward launch.