We encrypt your data at rest and in-transit.
Data at-rest is backed up and encrypted using AES-256 GCM encryption with root keys stored in an HSM.
We use modern, secure SSL/TLS settings and HTTP headers to ensure you can safely and securely browse our site.
We never store user passwords in plaintext and use Bcrypt with a high difficulty and a salt.
We filter and sanitize all user input to prevent code injection and XSS attacks.
Code is carefully written and reviewed to ensure proper security practices are followed.
Access to user data is strictly protected by operational procedures and user data is never shared without permission.