Last updated:
Data Protection
Projan is designed with data protection principles at its core. This page explains how we handle, store, and protect your data across our platform.
Data Categories
| Category | Examples | Storage | Encryption |
|---|---|---|---|
| Account Data | Email, name, team membership | Encrypted database (EU) | At rest (provider-managed) |
| Content | Conversations, documents, plans | Encrypted database (EU) | At rest (provider-managed) |
| Integration Credentials | OAuth tokens, API keys | Encrypted database (EU) | AES-256-GCM (application-level) |
| Payment Data | Subscription status, plan details | Stripe (payment processor) | Card data never touches our servers |
| Usage Analytics | Page views, feature usage | Google Analytics | Anonymised, no PII |
Data Storage & Location
- Primary: AWS EU (London, UK)
- Database: Managed database hosting (EU, London)
- No data replicated outside approved regions without explicit configuration
- Backups: Automated daily, encrypted, retained for 7 days
Integration Data Flows
When you connect a third-party integration (Slack, Jira, Notion, etc.):
- We store encrypted OAuth tokens to authenticate on your behalf
- We read project/workspace data to display options (e.g., Jira projects, Notion databases)
- We write data you explicitly export (tasks, documents)
- We do NOT continuously sync or monitor your third-party accounts
Detailed per-integration data access is documented at /docs/integrations.
Data Minimisation
- We only collect data necessary for service delivery
- Integration scopes limited to required functionality
- Analytics anonymised - no IP addresses or personal identifiers stored
- AI conversation context not used for model training
Backup & Recovery
- Automated daily backups via MongoDB Atlas
- Point-in-time recovery available (7-day window)
- Backups encrypted at rest
- Recovery tested quarterly
Data Deletion
- Account deletion: All personal data removed within 30 days
- Integration disconnect: Encrypted tokens immediately purged
- Conversation deletion: Permanently removed (not soft-deleted)
- Right to erasure: Request via privacy@projan.ai, processed within 30 days