Encryption everywhere
TLS 1.3 everywhere; AES-256 at rest. Secrets handled via a vault — never logged, never on disk in plaintext.
Security
How we protect customer data.
A short read of the controls behind every feature — encryption, access, monitoring, and how to reach our security team.
The four pillars
Strong identity, scoped access
OAuth + email + 2FA for tenants; SSO + WebAuthn for staff. Database access is row-level with audited changes.
Always-on monitoring
Sentry alerts, anomaly detection on auth events, and a 24/7 on-call rotation. Mean time to acknowledge: <10 minutes.
Coordinated disclosure
A documented vulnerability disclosure programme, a public PGP key, and a 72-hour acknowledgement SLA.
Found something? Tell us.
We honour responsible disclosure and credit researchers who help us harden the platform. Email us with a reproducible report and we will respond within 72 hours.
Verify the posture for yourself.
Audit reports, compliance attestations, and the live operational status are all one click away.