Decisions contain your most sensitive thinking. Reflect OS is built around the premise that what's private stays private — without compromising what's needed for the product to work.
Decision rationale, context fields, and sensitive notes are encrypted at rest using AES-256. These fields are decrypted only inside Reflect OS’s secure, server-side execution environment — for AI analysis and PDF export. Decrypted content is never persisted, never logged, and never leaves the trusted environment.
Structural metadata — decision titles, dates, categories, and status — is stored unencrypted to enable search and filtering. The content of your reasoning is always protected.
We do not use your decision data to train AI models.
Sensitive fields encrypted before storage. Decrypted only inside Reflect OS’s secure, server-side execution environment — never persisted, never logged, never leaving the trusted environment.
All data in transit encrypted via TLS 1.3. HSTS enforced.
Workspace, team, and individual permissions. You decide who can see what.
Every view, edit, and export is logged with timestamp and user. Defensible for governance and compliance.
Export all your decisions at any time. Request full deletion and we'll action it within 30 days.
Reflect OS is operated by Euan Pallister trading as Reflect OS, registered in the United Kingdom. We are compliant with UK GDPR and the Data Protection Act 2018.
For the full details of how we handle your data, see our Privacy Policy, Terms & Conditions, and Cookie Notice.
Questions about security or data handling? Get in touch.
The decisions recorded in Reflect OS are among the most sensitive information your organisation holds. M&A considerations, hiring decisions, strategic pivots, investment theses — these are not productivity notes. They are the raw material of competitive advantage. Our security model is designed accordingly.
All decision content is encrypted at rest using AES-256 encryption via the Supabase Vault extension. This includes decision descriptions, situational context, outcome notes, coach notes, and session notes. Encrypted fields are never stored in plaintext — not in logs, not in backups, not in AI model training data.
Full-text search in Reflect OS covers titles, categories, tags, and metadata. Decision descriptions and outcome notes are intentionally excluded from search to preserve their confidentiality. This is communicated clearly in the product UI. We believe security should never be traded for convenience.
All AI processing — risk assessment generation, decision debrief analysis — occurs inside Supabase Edge Functions. Your decision content is decrypted in-memory only for the duration of the AI call, and never persisted in decrypted form. AI providers never receive raw decision data as training input.
Reflect OS infrastructure is hosted in the EU (eu-west-1) by default, supporting GDPR compliance for UK and European customers. Your data never leaves the EU region without explicit consent.
Reflect OS is built for GDPR from the ground up. Every user can request full data deletion, access a complete export of their data, and review active sessions. Data deletion requests are processed within 30 days. The product includes a full cookie consent mechanism and explicit Terms of Service acceptance at account creation.