Security overview

We use modern TLS for data in transit. Authentication sessions use industry-standard cookies and token practices appropriate to our stack.

Dashboard data is scoped to your account. Administrative access is limited to trained operators and audited where required for support or reliability work.

Production workloads run on reputable cloud providers with hardened configurations, automated patching where applicable, and segregated environments for testing versus production.

If you believe you have found a vulnerability, reach us via the contact form with reproduction steps and the subject line “Security report.” Please allow reasonable time before public disclosure.