Security

Lynn helps B2B SaaS teams automate support without compromising security. While we're not yet certified under formal frameworks like SOC 2 or ISO 27001, we've implemented strong, responsible practices to keep your customer data secure.

Data Storage and Protection

• Your data is stored in Google Cloud Platform (GCP) using Firebase and BigQuery.
• Data in transit is encrypted using SSL.
• Our infrastructure supports default encryption at rest, and access is tightly controlled.
• Data is hosted in U.S.-based servers.

Responsible Data Handling

• We store only the data needed to help you support your users: names, emails, and support ticket content.
• We don't use your data to train our models.
• We isolate environments by tenant to keep customer data separate and organized.

Want details? View our Privacy Policy

Access and Infrastructure

• Hosted on GCP with automated deployments and secure pipelines.
• Access is managed via role-based controls, giving only the right people the right access.
• Every code change is reviewed before it goes live.

Vendors and Integrations

We rely on a few trusted third-party tools to power parts of Lynn:

• Stripe for secure payments
• OpenAI to drive AI functionality
• PostHog for product analytics
• Pinecone for vector search infrastructure

Each of these services follows their own strict security standards and are widely used in the industry.

Continuous Improvement

We haven't had a security incident—but we're proactive, not reactive. Our team is continually improving how we build and manage Lynn. As we grow, we're planning to formalize more of our security processes and pursue recognized certifications.

Have questions about security or data privacy?

Reach out directly to our co-founder at chamath@lynn.chat. We're happy to walk you through how we keep your data safe.