Security at the Core
We use bank-grade encryption and ephemeral processing to ensure your content never leaves our secure environment.
TLS/SSL Encryption
All data transmitted between your browser and our servers is encrypted using Transport Layer Security (TLS) 1.2 or newer. We aim for an A+ rating on Qualys SSL Labs.
Ephemeral Processing
Your text is processed in volatile memory (RAM) and is never written to disk or a database. Once the analysis is complete, the data is instantly overwritten.
SOC 2 Compliance
We follow strict SOC 2 Type II guidelines for security, availability, and confidentiality. Our infrastructure providers (AWS) are ISO 27001 certified.
Data Isolation
Enterprise customers benefit from logical tenant isolation. Your API requests are processed in dedicated containers separate from other traffic.
Vulnerability Scanning
We perform automated daily vulnerability scans and conduct annual penetration testing by independent third-party firms to identify and patch risks.
Access Controls
We employ the Principle of Least Privilege. Staff access to production systems is restricted by MFA and VPNs, and logged for auditing purposes.
Responsible Disclosure
If you believe you've found a security vulnerability in our service, please tell us. We look forward to working with you to resolve the issue promptly.
[email protected]