Who sees my data, and is it safe?

You own the residual reports, Schedule A materials, and audit outputs you upload. Residual Genius LLC does not claim ownership of your portfolio, merchant, or processor data. We host and process it only to provide the audit and related features you use.

Every organization on Residual Genius has its own isolated workspace. Your uploads, reconciliation rows, and Schedule A configuration are tied to your organization and are not visible to other customers.

Access is enforced in the application and at the database layer using organization-scoped permissions and row-level security on configured tables. We have run dedicated tenant isolation tests to verify that one organization cannot read another's data through normal product paths.

Platform administrators with explicit internal roles may access data only for support, abuse prevention, and operations you request. That access is not available to other paying customers.

All traffic between your browser and Residual Genius uses HTTPS (TLS). Files and database records are stored on Supabase and our hosting providers, which encrypt data at rest using standard cloud platform encryption. We do not store your login password in plain text.

We use your data to run your audit: parse your file, reconcile against your Schedule A, surface variance, and show results in your dashboard. We do not sell your residual files or audit results to third parties.

Optional AI-assisted features send the minimum content needed to model providers (for example, Anthropic) to parse and reconcile your file. You should only upload data you are authorized to share with those subprocessors.

A separate, internal data-intelligence layer is designed for future de-identified, aggregated benchmarks only (k-anonymized buckets, opt-in, legal review required). It is not active in production today and does not expose your org-specific financial rows to other customers.

Users inside your organization who you invite or who share your org account can see data for that organization according to their role. Other agents on Residual Genius outside your org cannot browse your portfolio.

Keep credentials private and remove access for team members who leave. You are responsible for who you authorize inside your organization.

Optional mediation features help you document payment discrepancies and facilitate business correspondence with processors. Residual Genius is not a law firm and does not provide legal advice or legal representation. For legal questions about a dispute, consult a licensed attorney.