Security first, always

Your data is the most valuable asset you have. We treat it that way — encrypted, isolated, and audited at every layer.

SOC 2 Type IIGDPR CompliantHIPAA ReadyCCPA CompliantISO 27001

AES

All data encrypted with AES-256 at rest. Database volumes, backups, and file storage are encrypted end-to-end.

TLS

TLS 1.3 enforced on every connection. HSTS preloaded, certificate transparency monitored.

RLS

Multi-tenant isolation via Postgres row-level security. Your data is never accessible to other accounts.

2FA

TOTP and WebAuthn supported. Session tokens rotate automatically and expire after inactivity.

WAF

Rate limiting, bot detection, and DDoS mitigation at the edge. Automated threat intelligence feeds.

LOG

Every API call, login, and data mutation is logged with actor, timestamp, and IP. Exportable and queryable.

BKP

Point-in-time recovery with 30-day retention. Cross-region replication for disaster recovery.

PEN

Annual third-party pen tests by certified firms. Continuous vulnerability scanning on every deployment.

VLT

No secrets in code. All credentials stored in encrypted vaults with automatic rotation policies.

Request our SOC 2 report

We're happy to share our latest SOC 2 Type II report and security questionnaire responses under NDA.