We encrypt data in transit using TLS and at rest using industry-standard encryption. Encryption keys are managed with strict access controls.
Access to production systems and customer data is limited to authorized personnel and logged for audit purposes. We use role-based access controls (RBAC) and multifactor authentication for privileged access.
We perform regular penetration tests and engage third-party auditors to validate our security posture. We also run continuous monitoring and automated security scans.
We strive to meet relevant industry standards and regulatory requirements. Where applicable, we maintain SOC 2 Type II controls and support GDPR data subject requests. Contact us for compliance inquiries.
We maintain an incident response plan that includes detection, containment, eradication, recovery, and post-incident review. If a breach affecting your data occurs, we will notify you in accordance with applicable laws.
For security questions or to report a vulnerability, email security@mailmind.ai.