Built so only you can see your money
Your finances are some of the most sensitive data you own. Here is, in plain terms, how FounderFi keeps your data scoped to you — no overstatement, just how it actually works.
Row-Level Security on every table
Each row in the database is scoped to your account with a policy that checks user_id = auth.uid(). You can only ever read or write your own data — there is no path for one account to see another's.
Public key only in the browser
The website uses only the public publishable (anon) key. The service-role secret key never touches the browser or this site, so client code cannot bypass your row-level policies.
The same backend as the app
The web app runs on the same secure Supabase backend as the FounderFi mobile app. Sign in on either one and your data stays in sync in real time — nothing to export or import.
Confirmed accounts & secure sessions
Accounts are created with email confirmation and support password reset. Sessions are kept in secure, HTTP-handled cookies rather than exposed in client storage.
We aim to be honest about security rather than impressive: we don't claim certifications we don't hold. Have a question about how your data is handled? Read our privacy policy or reach out and we'll answer plainly.