Security
How I keep your data safe.
Encryption
Everything's encrypted with TLS 1.2+ when it moves between your browser and the server. Your data sitting in the database? Also encrypted. This is standard practice, not some special feature.
Passwords
Passwords are hashed with bcrypt before they hit the database. I never see your actual password, and neither does anyone else. Even if someone somehow got the database, they'd just see gibberish.
Who Sees Your Data
Just you. I only look at your data if you explicitly email me asking for help with something specific. No data mining, no analytics teams, no "insights" being sold to advertisers.
Payments
Stripe handles all payment processing. They're PCI-DSS Level 1 certified, which means they know what they're doing. I never see or store your credit card info it goes straight to Stripe.
Infrastructure
Hosted on solid infrastructure with automatic backups. Firewalls, monitoring, the works. I keep things updated and watch for security issues.
Your Privacy
I don't sell your data. Period. Not to advertisers, not to "partners," not to anyone. Your client list is yours, not a revenue stream for me. More details in the Privacy Policy.
Staying Updated
Security patches and updates happen regularly. I monitor for vulnerabilities and fix things when needed. Software security isn't a one-time checkbox—it's ongoing maintenance.
Found a Security Issue?
If you find a vulnerability, please email me here. I'll appreciate the responsible disclosure.