Minimal scope for requested data (email headers), processing only.

Your data is always encrypted at rest, using AES-256 encryption.

Your data is also encrypted in transit to and from our platform, with TLS 1.3.

Our application only allows Google SSO and Microsoft SSO as authentication methods.

Our infrastructure is hosted on AWS in EU leveraging its most trusted services.

We strive to be what we expect from the rest of the market: strong security culture and awareness, secure coding practices, bug bounty policy, vulnerability scanning, and we are currently working towards our SOC 2 compliance.