1. Security Commitment
Protecting your data is a top priority. We implement industry-standard security measures to safeguard personal and financial information.
2. Technical Measures
- Encryption: All data transmitted between your device and our servers is encrypted using TLS 1.2+
- Secure Storage: Data at rest is encrypted using AES-256
- Authentication: Supabase Auth with secure session management
- Access Controls: Role-based access controls (RBAC) limit data access to authorized personnel only
- Regular Audits: Periodic security assessments and penetration testing
3. Infrastructure
Our Platform is hosted on secure, SOC 2-compliant infrastructure. We use reputable service providers (Supabase, Stripe) that maintain high security standards.
4. Incident Response
In the event of a data breach, we will:
- Notify affected users within 72 hours of discovery
- Report to relevant authorities as required by law
- Take immediate steps to contain and remediate the breach
- Conduct a thorough investigation and implement preventive measures
5. User Responsibilities
- Use strong, unique passwords
- Enable two-factor authentication when available
- Do not share your account credentials
- Report suspicious activity immediately