EU data residency
All customer data is stored in Supabase EU (Frankfurt). No data is replicated outside the EU. AI inference runs in EU regions where the model provider supports it.
Security
Built for B2B SaaS that takes data seriously.
Recon reads your CRM. We treat that with the seriousness it deserves. EU-hosted, encrypted end-to-end, with a clear path to SOC 2.
Encryption everywhere
TLS 1.2+ in transit. AES-256 at rest in Postgres. OAuth refresh tokens encrypted with AES-256-GCM using per-workspace keys derived from a hardware-backed master secret.
Least-privilege access
Engineering access to production is gated by SSO, 2FA, and access logs. Customer data is never queried by humans except in support cases that you initiate, with audit trails.
Read-only by default
Recon connects to HubSpot with read scopes by default. Write scopes are opt-in per integration and used only for the explicit features you enable.
Tenant isolation
Postgres row-level security is enforced on every table. Every query is workspace-scoped at the database layer, not just the application layer.
Right to deletion
On cancellation, your workspace is hard-deleted within 30 days. You can request immediate deletion via support. Backups are purged on the same schedule.
Compliance roadmap
- GDPR. Compliant from day one. Full DPA available on request.
- SOC 2 Type I. In progress. Target completion within 12 months of GA.
- ISO 27001. On the roadmap, post SOC 2.
- Sub-processors. Public list maintained at /sub-processors.
Reporting a vulnerability
If you have found a security issue, email hello@alpndigital.com with subject line “Security disclosure”. We acknowledge within one business day, validate within five, and credit responsible disclosures.
From the desk of Recon AI
Stop guessing who your best customers are.
Connect HubSpot. First brief lands within 48 hours, every recommendation cited to your real deals. Verdicts get tracked in the ledger. The model sharpens on your data, not someone else's.