
Product Security
Encryption with TLS 1.2+ in transit and AES-256 at rest
Role-based access control with fine-grained permissions
Audit logs recording every action for compliance and visibility
Workspace isolation to ensure strict data separation
Operational Security
Continuous monitoring with Grafana, Prometheus, and Loki
Cloudflare WAF for real-time threat and DDoS protection
Automated dependency and container vulnerability scanning
24/7 incident response with under 1h notification commitment
GDPR-aligned practices
Secure deletion
Retention
Sub-processors
Reliability
99.9% uptime SLA
< 200ms response time
< 4h recovery time objective
