Security Controls
Comprehensive security measures protecting your data
Encryption
Data in Transit
All data transmitted between your browser and our servers is encrypted using TLS 1.3, the latest and most secure protocol.
Data at Rest
All data stored in our databases is encrypted using AES-256 encryption with AWS KMS-managed keys.
Access Control
Role-Based Access Control (RBAC)
Four permission levels: Admin, Manager, Member, and Viewer. Users only access data within their organization.
Multi-Factor Authentication
MFA support coming Q1 2026 with TOTP and recovery codes.
Session Management
JWT tokens with automatic expiration. Account lockout after failed login attempts.
Infrastructure Security
AWS Infrastructure
Hosted on AWS with DDoS protection, automated backups, and multi-region redundancy.
24/7 Monitoring
CloudWatch alarms, activity logging, and automated security scanning.
Automated Backups
Daily automated backups with 7-day retention and point-in-time recovery.
Compliance & Auditing
Activity Logging
All user actions are logged and retained for audit purposes.
Tenant Isolation
Complete data isolation between organizations with workspace scoping.
Privacy Compliance
GDPR and LGPD compliant with published privacy policy and terms.