Trust, security & privacy

Sign-in is handled through email/password and Google, with sessions managed by our backend provider. Each user only sees and can act on their own data, enforced by row-level security in the database.

Administrative tools are restricted to verified admin roles tracked in a server-side roles table. Role checks happen on the server, not in the browser.

We store the information you create in the app — your profile, notes, assignments, certificates, generated PPTs, projects, and career-network posts — so the product works for you. We do not sell personal data.

Profile, post, and project visibility settings (public, followers-only, private) are enforced in the database, not only in the UI.

CollegeBugs runs on Lovable Cloud (Supabase + edge runtime). Data is stored in a managed Postgres database with row-level security. Service credentials remain server-side and are never shipped to the browser.

Real-time chat channels are scoped to verified members of each conversation.

We use third-party services to deliver core features: Lovable AI Gateway for AI generation, Razorpay for payments, LiveKit for live calls, and image-search APIs for educational imagery. Each call to those services is initiated by your action in the product.

You can delete content you created (posts, projects, notes, certificates, PPTs) from the app. To request full account and data deletion, contact us at the address below.

To report a vulnerability or ask a privacy question, email codenest9861@gmail.com. We acknowledge reports and work with the reporter on a fix.