Privacy at SteepDesk

SteepDesk ("SteepDesk," "we," "us") provides ordering, inventory, spend, and back-of-house tools to cafes and their teams. We act as the data processor for the operational data your organization stores in SteepDesk, and as a data controller for the account and usage data we collect to run the service.

• Account data — your name, email address, hashed password (managed by our auth provider), and organization/role.
• Operational data you enter — businesses, locations, orders and line items, vendors and roasters, contacts, inventory and par levels, spend records, employees and shifts, and vendor email communications.
• Connected-integration data — if you connect Square or QuickBooks Online, we sync the records needed to power spend and accounting features (e.g. sales summaries, bills). You control these connections and can disconnect them at any time.
• Diagnostic data — logs, error reports, and API/connector audit records (which tool was called, by which key, when) used for security, debugging, and rate limiting.

We do not knowingly collect payment card numbers — billing is handled by Stripe, which stores card data on our behalf.

• To provide, maintain, and secure the SteepDesk service.
• To send transactional email (order confirmations, par alerts) on your behalf.
• To power the integrations and the Claude connector you explicitly enable.
• To detect abuse, enforce rate limits, and investigate security incidents.
• To bill subscriptions and provide support.

We do not sell your data, and we do not use your operational data to train machine-learning models.

SteepDesk offers a connector that lets you use your data from Claude (claude.ai, Claude Desktop, and Claude Code) through the Model Context Protocol. When you connect:

• Access is granted via OAuth 2.1 with PKCE, or via a scoped API key you generate yourself. You approve the connection on a consent screen before any access is granted.
• When you ask Claude a question that uses a SteepDesk tool, the data that tool returns is sent to Anthropic in order to answer you. Anthropic processes it under its own terms and privacy policy.
• Every connector call is audit-logged. You can review connected clients and revoke access at any time from Settings → AI.
• Connector access respects your organization's role-based permissions — it can only do what your account can do.

We rely on a small set of vendors to operate SteepDesk. Each processes data only to provide its service to us:

• Supabase — database, authentication, and storage.
• Vercel — application hosting.
• Resend & Cloudflare — outbound and inbound email.
• Stripe — subscription billing and payment processing.
• Sentry — error monitoring.
• Anthropic — only when you use the Claude connector.
• Square and Intuit (QuickBooks) — only if you connect them.

We retain your operational data for as long as your organization keeps its account. When you delete your organization (Settings → Danger Zone), we purge its data in a single cascading transaction. Audit and billing records may be retained as required for security and legal obligations. Backups roll off on a rotating schedule.

All data is encrypted in transit. Tenant data is isolated with row-level security, integration credentials are encrypted at rest, and connector tokens and API keys are stored only as hashes. For details on reporting a vulnerability, see our security page.

You can access, correct, export, or delete your data from within the app, or by contacting us. Owners can delete an entire organization at any time. Depending on where you live, you may have additional rights under laws such as the GDPR or CCPA; contact us to exercise them.

We may update this policy as the product evolves. Material changes will be reflected by a new effective date at the top of this page.

Questions about privacy? Email privacy@steepdesk.com. For security reports, use security@steepdesk.com.