Your client work stays your client work.
You're trusting PenSow with briefs, SOWs, and contracts — the kind of documents you don't email lightly. Here's exactly how we protect them, and the controls you have.
How we protect your data
Encrypted in transit and at rest
Every request uses TLS 1.2+. Documents, briefs, and account data are encrypted at rest using AES-256 on enterprise-grade infrastructure.
Row-level security
Your documents are isolated at the database level. Even our own application code cannot read another user's documents — the database itself rejects the query.
Your content is never used to train AI
We send your brief to an AI provider only to generate your requested draft. Providers process it under zero-retention terms and never use it for model training.
Password-protected sharing
Share links are off by default. When you turn one on, you can require a password (hashed with PBKDF2-SHA256, 100k iterations) and revoke access any time.
Hardened API and webhooks
Every server function is auth-checked. Stripe webhooks are signature-verified. Rate limits sit in front of AI endpoints to block abuse.
Payments handled by Stripe
We never see or store your card number. Stripe handles all card data under PCI DSS Level 1 compliance.
What you control
Privacy isn't just our job — you have the controls too.
Strong authentication
Email + password sign-in, with every new password checked against the Have I Been Pwned breach database to block known-leaked credentials.
Private by default
Every document you create is private until you explicitly share it. No public listings, no discoverability.
Granular share controls
Toggle a share link on or off, require a password, or revoke it instantly — all from the document page.
Delete on demand
Delete any document or version at any time. To delete your full account and all data, open Settings → Danger Zone or email support and we'll handle it.
Our promises to you
- We will never sell your data.
- We will never use your documents or briefs to train AI models.
- We will never share documents you marked private with anyone outside your account.
- We will notify you promptly if a security incident ever affects your data.
Tips for sharing sensitive info safely
- • Use a strong, unique password — PenSow blocks any password found in known data breaches.
- • Only enable a share link when you need one — and add a password if the recipient list is wider than one person.
- • Revoke share links the moment a project ends.
- • Redact regulated identifiers (SSNs, PHI, payment data) from briefs unless your engagement specifically requires them.
- • Sign out on shared devices.
Frequently asked
Can PenSow staff read my documents?
No one accesses customer documents in the normal course of business. Access is reserved for narrow, audited cases (such as resolving a support ticket you opened that specifically requires it) and is always logged.
What happens to the brief I paste in?
It's sent over TLS to our server, forwarded to the AI provider with zero-retention terms, stored on your document record in your account, and accessible only to you (and anyone you explicitly share with).
Should I paste in NDAs, contracts, or client PII?
Treat PenSow like any SaaS that holds your work — fine for typical engagement docs and client briefs. For highly regulated data (PHI, classified, regulated financial records), redact identifiers before pasting, the same way you would in any external tool.
Where is my data stored?
On managed, SOC 2 compliant cloud infrastructure. Backups are encrypted and retained for disaster recovery only.
How do I report a security issue?
Email security@pensow.com. We respond within one business day and credit responsible disclosure in our changelog.
Questions before you trust us with a draft?
Email security@pensow.com — a human reads every message.