What data do you store for accounts?
Short answer
Account storage is minimal and focused on passkeys, recovery code hashes, plan status, and required billing references.
Last reviewed: 2026-02-20
account
privacy
passkeys
billing
Account storage is minimal and focused on passkeys, recovery code hashes, plan status, and required billing references.
Why this matters
Less stored data generally means less exposure if systems are compromised or legally requested.
Safe default steps
- Review Privacy summary and Privacy policy.
- Use a passkey instead of password reuse.
- Store recovery codes securely offline.
Common mistakes
- Saving recovery codes in insecure notes.
- Expecting billing to work without any payment records.
- Assuming all account systems are zero-data systems.
Limits
Payments are handled through Stripe, which has its own data requirements and policies.
Related
Next safe step: scrub a PDF locally and review threat model limits.