Trust & Security

ShintTools ships plugins for Unity and Unreal, a desktop launcher, and a web dashboard. AI inference is designed to run locally on the user's machine whenever possible, so project code and assets do not need to leave the studio to be analysed.

Accounts are managed via email + password or Google OAuth. Private routes (dashboard, admin) require a valid session, and admin permissions are checked server-side against a dedicated roles table — never trusted from the client.

User data (profile, plans, subscriptions, projects, applications) is stored in a managed Postgres database with Row-Level Security enabled: each row is only readable or writable by its owner or by explicit admin roles.

CVs submitted through the careers form are stored in a private bucket; downloads are served via short-lived signed URLs to authorised admins, forcing download rather than in-browser rendering.

Payments are processed by Stripe. We do not store full card data on our systems; only references required to link subscriptions and licences are kept.

To operate the service we use: Supabase (database, auth, storage), Stripe (payments), Cloudflare (hosting and edge), Google (OAuth and search tools), and transactional email providers. Each one processes only the data strictly required for its role.

We use strictly necessary cookies for session handling and, with your consent, aggregated analytics to understand site usage. You can review and revoke consent from the cookie banner.

We keep account data while the account is active. You can request deletion of your account and associated data by writing to the contact below; we process requests within a reasonable timeframe.

If you discover a security issue, please contact us privately at security@shint.tools. We welcome responsible disclosure and respond as quickly as we can.

We work to comply with GDPR when processing personal data of users and applicants. We do not claim certifications (SOC 2, ISO 27001, etc.) that we have not formally obtained; when we do, we will publish them here.