Privacy notice

When you register a workspace we collect your name, work email, hashed password (bcrypt — we never store plaintext) and the data you choose to enter into your workspace (customers, invoices, inventory etc.). Each workspace is fully isolated — no other workspace can read your data.

• To operate the service (authentication, sending invoices, recording transactions).
• To process payments via our PCI-DSS-compliant partners (PayPal, Stripe, MTN MoMo).
• To send service emails — billing receipts, password resets, security alerts.
• To produce anonymous, aggregated product analytics so we can improve Gr8Boost ERP.

We never sell your data, and we don't share it with advertisers.

Card details are entered directly into PayPal's hosted card fields — they never touch our servers. We only receive a payment confirmation reference. This keeps our PCI scope minimised.

When you ask Gr8Agentic AI a question, your prompt and a scoped slice of your workspace data are sent to Anthropic (Claude Sonnet 4.5) to generate an answer. Anthropic does not train on enterprise API data. Prompts are not retained beyond the request.

• Access — download all your workspace data on request.
• Correction — edit anything yourself in-app, or email us.
• Deletion — request workspace deletion and we'll erase within 30 days.
• Portability — export to CSV/JSON from any module.

TLS 1.3 in transit, encryption at rest, bcrypt password hashes, per-tenant data isolation, rate-limited auth (10 logins / 5 min / IP), brute-force account lockout (5 fails / 5 min → 5 min lockout), and an immutable audit log for every mutation. The platform is OWASP-hardened and penetration-tested.

Questions? Email privacy@gr8booster.com or contact our sales team from the landing page.