Loading...
“The most secure data is the data that was never linked.”
VentBox doesn't protect your identity with a policy you have to trust. We protect it with architecture that makes identification impossible.
Transparency isn't a feature — it's how we operate. Here's exactly what enters our system and what never does.
Encrypted Feedback
Your feedback text, stored with no connection to your identity. Encrypted at rest and in transit.
Anonymized Sentiment Data
AI-generated categories and scores from feedback text only. No personal data is processed.
Identity Linking
Our feedback table has no user ID column. It is technically impossible to link feedback to a person.
Advertising or Third-Party Tracking
We do not use cookies for advertising. We do not sell, rent, or share your data with third parties for marketing.
Anonymity isn't a feature toggle. It's baked into the database schema. Three separate tables, no foreign keys between identity and feedback.
Stores your account identity. Used for sign-in and space management only.
// auth.users
{
"id": "uuid",
"email": "you@co.com",
"name": "Your Name"
}
Deduplication only. A one-way hash prevents double-submits — but can never be reversed.
// submission_tracking
{
"space_id": "uuid",
"hash": "sha256(...)"
}
// No FK to feedback
Contains feedback text and AI analysis. No user_id. No IP. No identity. Ever.
// feedback
{
"space_id": "uuid",
"content": "text",
"sentiment": "analyzed"
}
// No user_id column
Every table in our database is protected by Supabase Row Level Security. Even if someone gained API access, they could only see data they're authorized to view.
-- Row Level Security policy for feedback table
CREATE POLICY "Space members can view feedback"
ON public.feedback
FOR SELECT
USING (
space_id IN (
SELECT space_id FROM space_members
WHERE user_id = auth.uid()
)
);
AES-256
Encryption at rest via Supabase (AWS). All data encrypted in transit with TLS.
RLS on Every Table
Row Level Security enforced on every table. No bypasses, no exceptions.
Zero Identity Linking
No third-party service receives data that links feedback content to user identity.
You own your data. Here's exactly what happens when you want it gone.
Contact us and we will permanently delete your profile, email, and all associated account data. Feedback you submitted cannot be linked to you — it remains in the system anonymously, because it was never connected to your identity in the first place.
Go to Account Settings →When a space creator or admin deletes a space, all feedback within that space is permanently deleted. There are no backups of deleted feedback. Once it's gone, it's gone.
Data retention: Account data is kept while your account is active. Feedback data is retained as part of the anonymous record for its space.
We use AI to categorize and analyze feedback for sentiment, emotional tone, and risk patterns — all on anonymized text only. No personal data ever touches our analysis pipeline.
VentBox is not “anonymous by policy.” We are anonymous by database design. Our feedback table has no user ID column — it is technically impossible to link a piece of feedback to the person who wrote it. Submission tracking for deduplication is stored in a separate, isolated table with no foreign key to the feedback table.
We use Supabase (hosted on AWS) for database and authentication, Anthropic Claude for AI analysis on anonymized text only, and Vercel for hosting. None of these services receive data that connects feedback to identity.
Found a security issue?
We take security reports seriously. Contact us at mail.hamza.ali@gmail.com and we'll respond within 48 hours.
Create an anonymous feedback space for your team. Architecture protects what policy can't.