How we handle your data
You're using Lunastak to think through your most sensitive strategic questions. This page covers what we do and don't do with that data.
Email hello@humventures.com.au with anything this page doesn't answer.
The short version
- Your data lives in an isolated Postgres database on Neon, encrypted in transit (TLS) and at rest.
- We never train AI models on your data. Anthropic, our LLM provider, contractually does not train on API traffic.
- Delete any project — and everything inside it (conversations, fragments, documents, generated strategy) — at any time, from inside the app.
- We don't retain uploaded documents. Files pass to our extraction provider, text becomes fragments in your project, the original is discarded.
- Our tools run entirely in your environment. The
decision-stackskill, the Gemini Gem, and the Custom GPT don't transmit anything to us. You decide what to share, and when.
Where your data lives
| Layer | Provider | What's stored |
|---|---|---|
| Application hosting | Vercel | No user data — code only |
| Database | Neon (serverless Postgres) | Your projects, conversations, fragments, generated strategy |
| LLM inference | Anthropic (Claude API) | Nothing persisted by us at this layer; see below |
| Document text extraction | Unstructured.io | Nothing persisted; pass-through only |
| Email (magic links) | Resend | Sign-in emails only |
| Authentication | NextAuth.js (Google OAuth + magic links) | Email address, session tokens |
All data in Neon is encrypted at rest. All connections are encrypted in transit using TLS.
What we store
- Account — email address and authentication state.
- Projects — the boundary that contains everything else.
- Conversations — your messages with Luna and Luna's responses, so you can resume.
- Fragments — strategic themes extracted from conversations, documents, and imported context bundles.
- Dimensional syntheses — Luna's ongoing understanding of your strategy.
- Generated strategy — your Decision Stack outputs and version history.
What we don't store
- Original uploaded documents. Files pass to Unstructured.io for text extraction; the extracted text becomes fragments; the original is discarded.
- Anything from the extraction tools running outside Lunastak. The skill, Gem, and GPT are context-engineering prompts. They run inside your chosen workspace and don't transmit to us.
- Tracking pixels or advertising data. We use Vercel Analytics and Statsig for product analytics. No advertising trackers, no data sold or shared.
How AI providers handle your data
Lunastak uses Anthropic's Claude API for all LLM inference. Anthropic's API terms specify that data submitted via the API is not used to train Anthropic models. Claude reads your conversation, extracts fragments, synthesises themes, and generates your strategy — without retaining it for training.
Document text extraction is performed by Unstructured.io. Files are sent for extraction and not retained by Lunastak afterwards.
The extraction tools never transmit to us
The decision-stack skill and its platform variants (Gemini Gem, Custom GPT, Claude Project) are context-engineering prompts. They guide you through structured questions, organise your thinking, and produce a context bundle.
No part of this process transmits data to Lunastak. Everything happens inside the workspace you chose — your terminal, ChatGPT, Gemini, Claude. Documents, transcripts, and conversations stay there.
When you're ready, you upload the bundle to Lunastak. Only then does prepared, intentional context enter our pipeline.
Deleting your data
From inside the app:
- Delete a project — open the project menu, choose "Delete project". This removes the project and everything in it: conversations, messages, fragments, documents, generated strategy, version history. Immediate and irreversible.
Per-conversation deletion is coming. For now, deleting a project is the way to clear conversation data.
To delete your account, email hello@humventures.com.au — we'll process it within 7 days.
Access control
- Every project belongs to exactly one user.
- API endpoints enforce ownership on every request. Projects are never accessible to other users.
- NextAuth.js with HTTP-only secure cookies for sessions. No password storage — auth is magic link or Google OAuth.
- A small number of demo projects (Acquired podcast Decision Stacks for Costco, TSMC, Nike) are flagged as demos and viewable by anyone read-only. They contain only public information.
Beta-stage caveats
Lunastak is in beta. Not yet SOC 2 certified. Built from the ground up by people who've worked with sensitive strategic data their whole careers, with privacy and isolation as first-class architectural concerns.
Specific compliance requirements? Get in touch — we'll tell you what we can and can't accommodate at this stage.
Related
- Humble Ventures privacy policy — the broader Humble Ventures Pty Ltd privacy notice.
- Anthropic API privacy — how Anthropic handles API customer data.