Your business data is processed on Intensifly infrastructure. We run our own language model, so your questions and financial data are not sent to third-party AI providers. We do not sell, share, or monetize your data.

Our AI runs on our servers

Intensifly uses a self-hosted large language model. Chat queries, financial data, and business model details stay inside Intensifly infrastructure.

We do not send prompts or data to OpenAI, Anthropic, Google AI, or similar services. The deterministic math engine for costs and business health metrics runs as pure computation.

Most SaaS products route customer data to third-party AI providers. We made a different decision: keep your data inside Intensifly systems.

What we store

  • Account information such as email, name, and organization name
  • Business data you enter: products, costs, suppliers, prices, events, and planning inputs
  • Chat history to maintain assistant context
  • Usage metrics such as feature usage, session duration, and error events
  • Authentication tokens including session and CSRF cookies

What we do not collect

  • Bank credentials or ERP account passwords
  • Payment card details (handled by the payment processor)
  • Location data beyond your organization profile settings
  • Browsing history outside Intensifly

How integrations work

QuickBooks, Xero, and Zoho connections use OAuth2. We receive scoped access tokens and data from those systems, but we never see your ERP login password.

You can disconnect integrations at any time. We immediately revoke and remove the connection token.

Where your data lives

[TODO: Confirm production hosting provider and exact Canadian region.]

  • Primary database: PostgreSQL with encryption at rest
  • Session state: Redis with automatic expiry
  • Backups: encrypted with retention policy [TODO: insert retention window]
  • Static assets may be cached through CDN, business data is not cached on CDN edges

Your data, your control

  • Export your data in supported formats
  • Request account deletion and full data purge within 30 days
  • Update and correct data directly in the app
  • Request processing restrictions through support
  • GDPR rights apply for users in the EU

Cookies

  • Functional authentication cookies (session and CSRF) are required
  • No advertising cookies
  • No third-party tracking pixels
  • [TODO: Confirm analytics tooling and retention settings]

Changes to this policy

We will notify you by email before material changes take effect. Last updated: December 2025.

Related policies: Terms of Service .

Questions?

Email us at [email protected]. We aim to respond within 5 business days.