Eline
Get early access
Trust & security

Eline runs your marketing. You hold the wheel.

She drafts campaigns, reads your stack, and queues the work. But nothing sends, publishes, or spends until you sign off. The control isn't a setting. It's the architecture.

Connects with what you already use

View+7 more

Every action

Approval-gated

Encryption at rest

AES-256

In transit

TLS 1.3

SOC 2 Type II

In progress · Q3 2026

The principles

Six commitments. Each one is enforced in code, not in a policy doc.

A marketing manager you can’t trust isn’t a manager. It’s a liability. So Eline is built so the safe thing is the default thing.

Per-tenant data isolation

Your data lives in its own row-level-security boundary. One organization can never read or touch another’s data. It’s enforced at the database, not just the app.

Scoped OAuth, encrypted tokens

Eline connects through each platform’s official OAuth and asks only for the scopes a task needs. The resulting tokens are encrypted, not stored in plaintext.

Approval-gated actions

Nothing sends, publishes, or spends without your explicit sign-off. Eline reads broadly to understand context, but every outbound write waits in an approval queue.

Full audit trail

Every action Eline takes, and every approval you give, is recorded. You can always answer what happened, when, and who released it.

Revoke access anytime

Disconnect any connector from inside Eline, or revoke from the platform’s own security settings. Access ends immediately; we can no longer act on your behalf.

Your data stays yours

You own your data and can export it. It is never sold, and never used to train external models. Cancel and it’s yours to take with you.

Approval-gated by design

Eline drafts and runs. You decide what goes live.

Reading is broad so Eline understands your full picture. Writing is narrow and never autonomous. Anything that leaves your account waits in an approval queue with the full draft and the reasoning behind it: a published post, a sent email, a changed budget. You approve, edit, or reject. Until then, nothing happens.

Ask how a specific action is gated

Read broad

Campaign metrics, content, audiences, calendars: the context Eline needs to draft good work. Read-only by default, scoped to what each connector grants.

Write narrow

Any write becomes a draft in your approval queue: publish, send, schedule, spend. No silent writes, no background sends.

Approve, then ship

Your sign-off is the only thing that releases an action. Every approval is logged, so there’s always a record of who released what, and when.

Your data, your connectors

How Eline connects to your stack, and what stays yours.

Connect through official OAuth

You authorize each platform through its own OAuth flow. Eline requests the narrowest scopes that let her do the job: read context, draft work, and queue writes for your approval.

Read what she needs, nothing more

Eline reads the marketing context relevant to your goals. She doesn’t reach for scopes a task doesn’t require, and what she reads stays inside your isolated tenant.

Encrypted in transit and at rest

TLS 1.3 in transit, AES-256 at rest. Connector tokens are encrypted so a stored token alone can’t be replayed against your accounts.

Leave on your terms

Export your data whenever you want. Revoke access in one click. Right-to-erasure requests are honored within 30 days, and your data is never used to train external models.

Connectors & sub-processors

Eline connects through each platform’s official OAuth, requesting only the scopes a given task needs. Our sub-processors:

  • AWS: infrastructure (us-east-1)
  • Supabase: managed Postgres
  • Resend: transactional email
  • Anthropic: the agent layer

We notify you 30 days before adding a new sub-processor.

SOC 2 Type II

In progress, targeting Q3 2026. Type I report available now under NDA.

GDPR + CCPA

Article 28 Data Processing Agreement available on request. CCPA disclosures honored.

Encryption

AES-256 at rest, TLS 1.3 in transit. Connector tokens are encrypted, not stored in the clear.

Retention

Right-to-erasure honored within 30 days of request. Your data is never used to train external models.

Still have questions?

Tell us what you need to feel comfortable, and we’ll walk you through it.

Want the DPA, the SOC 2 Type I report, a sub-processor list, or a deep-dive on how a specific action is gated? We answer directly. No security questionnaire black hole.

Contact us

One teammate. Your whole marketing team.

Connect your stack and read your first morning digest tomorrow. Or watch Eline plan a launch on a live demo first.

Get early accessWatch Eline work

See our security posture →