Security

We take data protection seriously. Our security & compliance program is in progress; below is our current posture and roadmap.

Current practices

Encryption in transit (TLS) and at rest for managed services.
Least‑privilege access and audit logging for production systems.
Isolated environments for staging vs. production.
Regular dependency updates and security patching cadence.

Compliance roadmap

SOC 2 Type II readiness: policies, controls, monitoring.
PCI DSS: payments handled by Stripe (no card data stored).
Privacy: DPA and data request workflows; GDPR readiness.

Questions? Contact us.