Legal

Privacy Policy

TLB Cloud · Last updated April 2026

What we collect

  • Account credentials: name, email, and firm or organization identifier provided during registration
  • Security authentication: passkeys, hashed passwords, configured MFA options (authenticator app, SMS, email)
  • Activity: current sessions, trusted devices, login attempt logs for account protection
  • Service data: information you provide or connect through our products, used solely to deliver the service

How we use it

  • User verification and account security
  • Delivering the services you've signed up for
  • Infrastructure monitoring and abuse prevention

We do not use your data for advertising, marketing, or any purpose other than running the service.

Data sharing

We don't sell or share your personal information for commercial purposes. Infrastructure vendors may process data strictly for operational purposes under confidentiality agreements.

Current sub-processors: Vercel, Supabase, Resend, Twilio, Stripe, Inngest, Cloudflare (all US-based).

SMS and MFA

When SMS authentication is enabled, phone numbers are used only for verification codes, never marketing. Message frequency depends on your activity. Carrier fees may apply.

Data retention

Category Duration
Account and firm informationUntil account deletion
Session recordsUntil logout or expiration
Service-generated records90 days
Compliance recordsIndefinite
Security logsIndefinite

Account deletion requests processed within 30 days via info@tlbcloud.net.

Security

We use encrypted authentication (passkeys, hashed passwords), secure session management, and access controls. No system is completely secure.

Cookies

We use only functional cookies necessary to operate the service: login sessions, workspace state, MFA trust, and temporary auth state. No tracking, advertising, or analytics cookies.

Contact

info@tlbcloud.net

Privacy Terms Billing Terms Security