Your data security is our highest priority. Here's how we protect it.
All data in transit is encrypted with TLS 1.3.
Passwords are hashed with bcrypt (cost 12). We never store plaintext passwords.
We maintain SOC 2 Type II compliance for data security and availability.
Full GDPR compliance for EU/EEA users.
All API endpoints are rate-limited to prevent abuse.
Regular third-party penetration testing and code audits.
Found a security vulnerability? We appreciate responsible disclosure. Please email [email protected] with details. We will respond within 48 hours and work with you to resolve the issue. We do not pursue legal action against researchers acting in good faith.