Security and data handling
Resubly keeps renewal data private, scoped, and useful.
Resubly is built for small Finance and Ops teams that need contract-aware renewal tracking without employee monitoring or broad device access.
Authenticated access
Every workspace is protected by Better Auth sessions, role-based organization membership, and owner-only billing controls.
Contract-aware storage
Uploaded documents are stored in Convex storage and linked to the organization and subscription records that own them.
Managed backend
Application data lives in Convex with server-side authorization checks before sensitive organization records are returned.
Controlled notifications
Renewal and billing alerts are sent only from configured channels, with lifecycle email opt-out support where appropriate.
Current Security Posture
Role-based access is enforced on organization, subscription, billing, and settings data.
Password reset email is handled through server-side Better Auth and Resend configuration.
Uploaded documents are not used for employee surveillance or device monitoring.
Account and organization deletion include a 30-day grace period before final purge.
SOC 2 is not completed yet; Resubly treats this page as a pre-SOC 2 trust signal, not a compliance claim.