Trust

How we handle your data.

Plain English · No legalese · Last updated 2026-06-01

Firstweek connects to some of the most sensitive parts of your company — code, docs, conversations. We think you deserve to know exactly what we do with that access, in plain language. Here it is.

What we collect

Only what's needed to do the job.

Account information — your name, work email, and company name when you sign up.
New-hire details — name, job title, role context, and start date that you enter for each onboarding.
Integration content — repo files, Slack messages, Jira tickets, Confluence pages, or Drive docs from the specific sources you choose to connect. Nothing outside those scopes.
Billing information — handled entirely by Stripe. We never see or store your card number.
Usage analytics — pages visited and features used, via Google Analytics. No names or emails attached.

Our commitment

What we will never do with your data.

Your data belongs to your company. Full stop.

We will never —

Sell or rent your data
Use it for advertising
Train AI without your consent
Share it with third parties for their benefit
Build profiles from it
Use it outside the Service

The only reason your data exists in our systems is to generate onboarding content for your workspace. That's it. We don't monetize it, we don't analyze it for trends to sell, and we don't hand it off to anyone who doesn't need it to run the product.

If you ever want it deleted, email [email protected] and we'll take care of it.

How we protect it

Security built in, not bolted on.

We design every feature with security as a requirement, applying the controls you'd expect from a SOC 2-aligned system as we work toward formal certification.

In transit

Encrypted end-to-end

Every connection between your browser, our servers, and any third-party service uses TLS. Your data is never sent over an unencrypted channel.

At rest

AES-256 for sensitive fields

Our database is encrypted at rest. PII fields — new-hire emails, SSO credentials, OAuth tokens — get an additional layer of AES-256 encryption at the application level before they're written to disk.

Isolation

Your data stays yours

Every database query is scoped to your workspace at the application layer. It is architecturally impossible for one company's data to be returned in another company's request.

Access controls

Least privilege, always

Production system access is restricted to authorized personnel only. All administrative access is logged. Your team controls their own permissions within your workspace.

AI and your data

What actually happens when you generate a letter.

When you hit "generate," here's the exact sequence:

We assemble the context you've provided — the new hire's role, focus areas, and content from the sources you've connected.
That content is sent to an AI inference provider (currently Anthropic) over an encrypted connection.
The provider generates the letter and returns it. The request is not stored by the provider — they operate under zero-retention terms.
The generated letter is shown to you for review before anything goes to the new hire.

What we never send to AI providers: email addresses, OAuth tokens, SSO credentials, payment data, or anything beyond the content needed to write the letter.

On AI training: We will not use your data to train AI models without your explicit prior written consent. If that ever changes for your workspace — say, as part of a pilot program — we'll ask you first and put it in writing.

As Firstweek grows, we may use additional AI providers for specific features. Any new provider will appear on our Subprocessors page before they touch your data.

Tools we use

Who else touches your data, and why.

We use a small set of third-party services to run the product. Here's the plain-English version — the full legal list is on our Subprocessors page.

AWS

Our cloud infrastructure. Everything runs here — servers, databases, storage. All in the US.

Anthropic

Powers the letter generation. Receives onboarding context per request, retains nothing.

Stripe

Handles all billing and payments. We never see or store your card details.

Resend

Delivers transactional emails — onboarding letters, invites, alerts. Receives recipient addresses and email content.

Google Analytics

Product analytics — pages visited, features used. Collects device and browser data. No names or emails attached.

Slack, GitHub, Atlassian, Google, Notion

Only active if your workspace connects them. Read-only access, scoped to what you choose. You can disconnect any integration at any time from your settings.

Your controls

What you can actually do.

Revoke any integration at any time from your workspace Settings → Integrations.
Delete any onboarding record and its associated data from the onboarding manager.
Request full workspace deletion — email us and we'll delete everything within 90 days.
Export or access your data — contact us and we'll provide it in a readable format.
Manage team access — control who in your organization can view or edit onboardings.

Questions

We're a small team. You can actually reach us.

Privacy questions, data requests, security disclosures — we read everything sent to these addresses.

[email protected] → [email protected] →

For the full legal version of our data practices, read our Privacy Policy, Terms of Service, and Subprocessors list.