Security

Nudge AI uses OAuth for Google access and secure session handling for authentication. We never ask for your Gmail password.

We request only the scopes required to read thread activity and send an email when you explicitly click Send inside Nudge AI.

Relationship metadata, waitlist submissions, and application records are stored in Supabase. Sensitive tokens are encrypted at rest.

Production data is protected behind authenticated access controls and row-level database policies where applicable.

If you notice a security issue, email hey@nudgeai360.com.