Security & Compliance
Your data security is our top priority. We implement industry-leading security practices to protect your information.
Security at Every Layer
We employ multiple layers of security to ensure your data remains protected.
Encryption
All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption.
Infrastructure
Hosted on enterprise-grade infrastructure with 99.9% uptime SLA and DDoS protection.
Access Control
Role-based access control, SSO support, and audit logs for enterprise accounts.
Monitoring
24/7 security monitoring, anomaly detection, and automated threat response.
Compliance & Certifications
We maintain compliance with major data protection regulations and industry standards.
GDPR
Full compliance with EU data protection regulations
CCPA
California Consumer Privacy Act compliance
SOC 2 Type II
Audit in progress - expected Q2 2025
ISO 27001
Certification planned for 2025
Our Security Practices
Infrastructure Security
- Hosted on Vercel with edge network
- Supabase for secure database management
- Automatic failover and disaster recovery
- Regular security patches and updates
Access Controls
- Role-based access control (RBAC)
- Single Sign-On (SSO) for Enterprise
- Two-factor authentication available
- Session management and auto-logout
Data Retention
- Data retained only as long as necessary
- Secure deletion upon request
- Automated data lifecycle management
- Export your data at any time
Incident Response
- 24/7 security team on call
- Documented incident response plan
- Rapid notification procedures
- Post-incident analysis and reporting
Report a Security Issue
If you discover a security vulnerability, please report it responsibly. We appreciate your help in keeping Scippa secure.
Contact Security TeamEmail: security@scippa.io