instanswer
LoginStart Free Trial

Security & Data Privacy

How Instanswer protects your data and your customers' data

What's already protecting you

SSL / HTTPS Encryption

All data in transit is encrypted via HTTPS across the entire Instanswer platform.

Supabase SOC 2 Type 2

Our database infrastructure is hosted on Supabase, which is SOC 2 Type 2 certified. Data is encrypted at rest and in transit.

PCI Compliant Payments

Payments are processed by Paddle as Merchant of Record. Your card data never touches Instanswer servers. PCI compliance is Paddle's responsibility.

Data Isolation (Row Level Security)

Every user's chatbot data is isolated using Supabase Row Level Security. You can only ever access your own data.

No Plain Text Passwords

Authentication is handled by Supabase Auth. Passwords are hashed and never stored in plain text.

No Payment Data Stored

Instanswer never stores credit card numbers, CVVs, or billing details. All payment data lives with Paddle.

Your data, your rules

You own all of your chatbot data, conversation history, and captured leads. You can delete your chatbot and all associated data at any time from your dashboard. Your website content is only used to train your chatbot — it is never shared with other users or used to train any global AI model.

Common questions

Does Instanswer read my customers' conversations?

Conversations are stored in your account only and used solely to improve your chatbot's responses. They are never shared with other users or used to train any third-party AI model.

Is my website content safe?

Only publicly accessible pages on your website are crawled and stored as training data. Private, authenticated, or password-protected content is never accessed.

Who owns the data?

You do. All chatbot training data, conversations, and leads belong to you and can be deleted at any time.

Where is my data stored?

Data is stored on Supabase infrastructure. Contact hello@instanswer.ai if you need to know the specific region for compliance purposes.

Are you GDPR compliant?

We are working toward full GDPR compliance including a Supabase Data Processing Agreement. If you have specific GDPR requirements, contact us at hello@instanswer.ai before signing up.

Have a security question not answered here?

We reply to all security questions within one business day.

Email us →