I don’t want to stir the pot, but I am building a fintech app. I have 2 basic questions that might seem obvious to most:
Do the plugin developers gain access to our user’s data?
Do plugin developers get access to our app data and workflows?
How do we ensure they do not have this access so we can tell our users that their data is secure? I am mostly concerned about the small SaaS developers.
Sure, if the data uses an API call to the plugin developer’s server. For example, the Zeroqode Bubble page to PDF plugin sends the page’s HTML comment to a Zeroqode owned server so that it can return the rendered PDF.
You check the plugin code, or ask the plugin author.
No, they don’t have any access to the Bubble app or app data (unless you provide them data like in the scenario above).
