Skip to main content
Firmhouse AI is designed to help teams work with project context while protecting personal data and keeping access scoped to the right user.

Personal data protection

Firmhouse makes sure that personal and sensitive data is not sent downstream to the LLM models used by Oppy or Firmhouse MCP. Personal information is hidden or redacted before it reaches the model, including:
  • email addresses
  • customer notes
  • billing addresses
  • shipping addresses
The same protection applies when project information is sent through a Firmhouse MCP connection.

User-scoped access

Oppy usage in the Firmhouse Portal and Firmhouse MCP connections are scoped to a specific user in a specific Firmhouse project. Oppy and MCP only return information that the user’s role is allowed to access in that project. If a user does not have access to certain project information in Firmhouse, Oppy and MCP should not return that information either.