IndustriesWorkPlaybookHow it worksAboutBook a systems auditBring us your idea

How do I hand over my AI-built app to a professional?

Straight answer

Hand over by giving a clear picture and controlled, revocable access, not your raw secrets. Share what the app does, where the code and data live, and what worries you. Grant access through proper channels you can withdraw, reset keys afterwards, and agree in writing what they will do and what you will own. Keep control throughout.

Information current as at 5 July 2026

Handing over your app is a moment of trust, and it can be done in a way that keeps you safe rather than exposed. The aim is to give a professional everything they need to help while keeping control in your hands, so that if the relationship ever ends, you can cleanly close the door. Here is how to do it well.

Plain English
Read-only access
Permission to view something without the ability to change it.
Collaborator
Someone added to your accounts with defined, revocable permissions.
API key
A password-like string that lets an app use an outside service.
Offboarding
Cleanly removing someone's access once their work is done.

Step by step

  1. Give the picture before the keysStart by sharing understanding, not access. Walk them through what the app does, where the code and data live, what it connects to, and what worries you, ideally over a screen-share so they see it in motion. A good professional wants this context first anyway, because it makes their work faster and their questions sharper. Handing over a clear picture before any credentials means the early conversation can happen with almost no risk, and it lets you judge how they engage before you grant them anything sensitive.
  2. Grant access through proper, revocable channelsWhen they do need access, add them as a collaborator on your accounts with defined permissions you can withdraw, rather than sharing your own login. Most platforms let you invite someone with read-only or limited rights and remove them in one click later. Give the least access that lets them do the job at hand, and widen it only as needed. Never gather up passwords and secret keys into an email or chat message. Controlled, revocable access is the difference between lending a key and handing over the deed.
  3. Never send raw secrets, and reset them afterwardsSecret keys and passwords should not travel through email or messaging, and a trustworthy professional will not ask them to. Where they genuinely need a secret, use the platform's own secure sharing or set it directly in the system yourself. Then, once the work is done or if the relationship ends, treat the secrets as needing a refresh: regenerate keys and passwords so that any access granted during the work is cleanly closed. This one habit means a handover never leaves a permanent open door behind it.
  4. Put the plan and the ownership in writingBefore real work begins, agree in writing what they will do, roughly what it will cost, and, crucially, what you will own at the end. A short, plain-language agreement protects both sides and forces the ownership question into the open early, where it belongs. It need not be a legal epic; it needs to say who holds the code, who controls the data, and how the work is paid. Clarity here prevents the most painful handover disputes, which are almost always about ownership no one wrote down.
  5. Keep your own copy and your own controlThroughout, make sure you retain your own access to everything and a copy of anything you cannot afford to lose. You should never be in a position where the professional holds the only keys to your own system. Keep the domain in your account, keep ownership of the code repository, and keep a backup of your data. A good professional expects and supports this, because it is how responsible handovers work. If someone resists you retaining control of your own system, that resistance is itself worth pausing on.
No pressure
Show us what you built.

If you have made something and it needs to become real, send it over. We will tell you honestly what it needs to be live, safe and yours, whether that is a quick fix you can do or a proper build. No obligation.

Common questions

Questions, answered

Is it safe to give a professional access to my app?
Yes, if you do it through proper channels. Add them as a collaborator with limited, revocable permissions rather than sharing your own login, give the least access the job needs, and reset keys afterwards. Done this way, you can cleanly withdraw access at any time, which keeps a handover safe rather than exposing you.
Should I ever email my passwords or keys?
No. Secret keys and passwords should never travel through email or chat, and a trustworthy professional will not ask you to send them that way. Use the platform's secure sharing or set secrets yourself in the system. If someone asks for raw credentials over an insecure channel, treat it as a warning sign.
What should I keep control of no matter what?
Your domain, your code repository and your data. These are the pieces that make the system truly yours. Add a professional as a collaborator on them if needed, but keep your own ownership and a backup of anything irreplaceable. You should never end up in a position where someone else holds the only keys to your own system.
Do I need a written agreement for a small job?
Even a short one helps. It does not need to be elaborate, but a plain note of what they will do, what it costs, and what you will own at the end prevents the disputes that most often arise, which are about ownership and scope no one wrote down. The smaller the job, the shorter the note, but writing something is wise.
No pressure
Show us what you built.

If you have made something and it needs to become real, send it over. We will tell you honestly what it needs to be live, safe and yours, whether that is a quick fix you can do or a proper build. No obligation.

Start here

Two doors. Same senior team.

Whether you can name exactly what you want built, or you just know something is leaking, the next step is the same conversation.