Data is protected in transit and at rest

Data sent between your device and endrow uses TLS 1.3. Data stored in our managed infrastructure is encrypted at rest. Access to production systems is limited to the operations needed to run the product and handle account requests.

Sharing rules

Identifiable farm information is not sold or shared with advertisers. It may be shared when you approve access or when service providers are needed to run endrow or answer your request, such as hosting, storage, email, and the AI services used inside the app. If you opt into the Regional Benchmark Network, endrow uses de-identified, aggregated observations that are designed not to include names, user IDs, or direct farm identifiers.

Export and deletion tools

You can request an export from Settings. If you delete your account, endrow starts the account-data removal flow right away. Some narrow billing, governance, security, and aggregate benchmark records may remain as described in our Privacy Policy.

Who can see your information?

In normal product use, people only see the parts of the farm you authorize them to see. When you add family members or partners, you control what they can access, and any support access should stay limited to the minimum needed to help you. Regional benchmark views show aggregated readouts, not another farm’s full records.

Where data is hosted

Your data is hosted in the United States through Supabase on AWS infrastructure. Supabase publishes SOC 2 Type II information for its service.

AI providers used for AI features

When you use AI features, endrow sends the needed farm context to Anthropic and OpenAI API services so those features can answer your request. Those API workflows are configured not to use submitted farm data for model training.

What about uploaded documents?

Photos of elevator tickets, receipts, leases, and manuals are stored with the rest of your account data. Controlled server-side jobs read them to pull out the details that matter to your farm records. Those document-processing workflows are not used for model training.

Straightforward data practices

We keep the data flow visible and auditable: you can see what is stored, what the screens pull from, and what your account-level tools can touch.

Delete your account data

At any time, you can go to Settings and tap ‘Delete All My Data.’ That starts the account-data removal flow right away. There is an explicit confirmation step, and the remaining exceptions are described in the Privacy Policy.

No third-party ad tags today

We do not currently use third-party advertising cookies, pixels, or analytics tags. Browser storage is limited to first-party essentials like login, invites, referrals, the signup path you intentionally chose, and campaign click IDs already present in an endrow signup URL.