Kuhler

Legal

Privacy Policy

Last updated: 2026-05-05

Plain-language summary.We collect the minimum data we need to run the platform. We don’t sell your data. We don’t share it with advertisers. You can export everything we have on you, and pulling your CNAME deactivates your portal. The legal-ese below is the long form.

Who we are

“Kuhler,” “we,” “us,” and “our” refer to the operator of kuhler.com and the Atlas platform. Contact: hello@kuhler.com.

What we collect

  • Account information. Name, email, organization, role — whatever you give us when you contact us, sign up, or are added by a tenant administrator.
  • Operational data. POs, batches, milestones, line items, messages, attachments, and similar records you and your customers create on the platform.
  • Usage data.Pages visited, feature interactions, error logs. We use this to improve the product. We don’t track you across other sites.
  • Cookies. Strictly functional (session, demo state) and basic analytics (Vercel Analytics). No third-party advertising cookies.

How we use it

  • To deliver the service you signed up for.
  • To support you when you reach out.
  • To improve the product based on aggregated usage patterns.
  • To send service-related emails (security, billing, outages). No marketing spam.

How we share it

We share data only with vendors who help us run the platform — Supabase (database), Vercel (hosting), Resend (transactional email), Clerk (authentication). Each is bound by its own data processing agreement. We do not sell or share data with advertisers.

Where we store it

Customer data is stored in Supabase (PostgreSQL) with row-level security enforcing tenant isolation. Hosting and serverless functions run on Vercel. Default region is North America; enterprise tier customers can request EU regions.

Your rights

  • Export. Request a full Postgres dump of your tenant’s data at any time.
  • Delete. Pull your CNAME and request deletion. We delete within 30 days.
  • Correct. You and your tenant administrators can edit any record directly.
  • Object. Email us. We respond.

Security

HTTPS everywhere via auto-issued Let’s Encrypt certificates. Postgres is encrypted at rest and in transit. Authentication via Clerk with multi-factor support. Row-level security policies are enforced at the database layer for every tenant-scoped table.

Children

Kuhler is a B2B platform. We do not knowingly collect data from children under 13.

Changes

We’ll update this policy as the product evolves. Material changes are announced by email to administrators. The date at the top of this page reflects the last update.

Contact

Questions, requests, or concerns: hello@kuhler.com.