Privacy Policy
Last updated: June 2026
Verso is an AI writing studio that drafts LinkedIn posts grounded in your own work. This policy explains what we collect, why, who we share it with, and how you stay in control. We have written it to be read, not to hide behind.
What we collect
- Account data: your name, email and authentication credentials (passwords are hashed with scrypt; we never store them in plain text), plus optional Google or LinkedIn sign-in identifiers.
- Content you create or upload: chat messages, generated posts, and the documents you add to your knowledge base.
- Derived data: a writing voice profile and durable memory (preferences, corrections, facts) distilled from your content to personalize generations.
- Usage and cost records: per-request token counts and cost, used for your dashboard and quotas.
How we use it
We use your data to operate the product: generating drafts in your voice, grounding them in your knowledge base, metering cost, and securing your account. We do not sell your data, and we do not use your content to train our own models.
Encryption
Your most sensitive fields, knowledge-base content, voice profile, learned memory and conversation summaries, are encrypted with AES-256-GCM on our server before they are written to the database, using a key that is not stored in that database. Transport is protected with TLS.
Who we share it with
We rely on a small set of sub-processors to deliver the service. They receive only what is needed to perform their function. See the full list on our sub-processors page. In short: your prompts and relevant context are sent to our AI provider to generate text; text is sent to an embeddings provider to make your knowledge base searchable; billing details are handled by our payments provider; and transactional email is sent through our email provider. Several of these operate in the United States.
Retention and deletion
We keep your data for as long as your account is active. You can export a full copy at any time, and you can permanently delete your account from Account settings. Deleting your account erases your personal data and any workspace where you are the only member; cost-ledger rows kept for accounting are de-identified. Encrypted fields become unrecoverable once their rows are removed.
Your rights
Depending on where you live (including under GDPR and CCPA), you have the right to access, export, correct and delete your personal data, and to object to certain processing. You can exercise access, export and deletion yourself from Account settings; for anything else, contact us at privacy@verso.app.
Connecting your LinkedIn account is optional. If you connect it, we store the access token LinkedIn issues (encrypted at rest) and use it for one purpose: publishing the posts you explicitly choose to publish, through LinkedIn's official API. Verso never posts without your action and does not scrape LinkedIn. You can disconnect your LinkedIn account at any time from Settings, and you are responsible for what you choose to post.
Changes
If we make material changes to this policy we will update the date above and, where appropriate, notify you. Questions: privacy@verso.app.