TetradBack to home

Legal

Security

Last updated: June 2026

These policies are early-stage drafts. They may change as Tetrad develops. Contact us with questions before relying on them for compliance decisions.

Our approach

Tetrad is being built toward strong privacy and security standards. We do not claim features that are not yet implemented. This page describes our current direction and honest limitations.

Authentication

Sign-in is handled through standard authentication infrastructure (Supabase when configured). Passwords are not stored in plain text by Tetrad.

Data storage

  • User uploads and generated notebooks are stored in protected database and storage systems
  • API keys for AI generation are kept server-side and are not exposed in the browser
  • Private notebooks are tied to authenticated accounts where auth is enabled

What we do not claim

  • We do not claim military-grade or end-to-end encryption unless explicitly implemented and documented
  • We do not guarantee that AI processing occurs entirely on your device in hosted mode
  • Demo/guest mode may use local or simplified storage — see in-app behavior

Your role

Do not upload material you do not have the right to use. Review AI outputs for accuracy. Use delete controls to remove material you no longer need.

Reporting issues

Security concerns: