Security

Your Data is Safe with Us

Enterprise-grade security built for the curtain industry. GDPR compliant, EU data residency, and bank-level encryption keep your business data protected.

Data Encryption

All data is encrypted in transit and at rest using industry-standard TLS and AES-256 encryption.

TLS 1.3 for all data in transit
AES-256 encryption for data at rest
Encrypted database connections
Secure cookie handling

GDPR Compliance

We are fully compliant with the General Data Protection Regulation and process data lawfully.

Lawful data processing basis
Data subject rights supported
Privacy by design principles
Regular compliance audits

Data Residency (EU)

All customer data is stored and processed within the European Union on Supabase infrastructure.

EU-hosted database servers
No data transfers outside the EU
Supabase EU region infrastructure
Compliant with EU data sovereignty

Access Control (RLS)

Row Level Security on every table ensures companies can only access their own data.

Supabase Row Level Security on all tables
Company-level data isolation
SECURITY DEFINER patterns for safe privileged operations
Role-based access control

Backup Strategy

Automated daily backups and point-in-time recovery ensure your data is never lost.

Daily automated database backups
Point-in-time recovery available
Geographically distributed backups
30-day backup retention

Data Deletion

You have full control over your data and can request deletion at any time.

Right to erasure (GDPR Article 17)
Self-service data export
Complete deletion on request
Verification before deletion

Compliance & Certifications

Our infrastructure and practices meet industry standards

GDPR compliant data processing

EU data residency with Supabase

HMAC-authenticated webhooks

SECURITY DEFINER SQL patterns

TLS 1.3 encryption in transit

AES-256 encryption at rest

Row Level Security on all tables

Regular security reviews

Technical Security Details

How we implement security at the infrastructure level

Supabase RLS

Every database table has Row Level Security policies enforced, ensuring tenant isolation at the database level. Companies can never access another company's data.

TLS Encryption

All network traffic is encrypted using TLS 1.3. This includes API requests, database connections, and webhook deliveries.

SECURITY DEFINER Patterns

Privileged database operations use SECURITY DEFINER functions with strict input validation, preventing privilege escalation and SQL injection.

HMAC Webhook Authentication

All outgoing webhooks are signed with HMAC-SHA256 signatures, allowing recipients to verify authenticity and prevent tampering.

Security You Can Trust

Start your free account today with enterprise-grade security included

GORDIJNFABRIEK

Llamar