Enterprise Ready
Infrastructure & processes
AES-256 Encryption
At rest & in transit
GDPR Compliant
Full data subject rights
99.9% Uptime SLA
Enterprise-grade reliability
Data Encryption
- In Transit: TLS 1.3 for all HTTP connections. Perfect Forward Secrecy enabled.
- At Rest: AES-256 encryption for all stored data including database, file storage, and backups.
- API: All API endpoints require HTTPS. OAuth 2.0 for third-party integrations.
- Secrets: API keys, tokens, and credentials encrypted with Fernet (AES-128-CBC + HMAC-SHA256).
Infrastructure Security
- Hosting: Dedicated servers in European data centers (Hetzner, Germany).
- Network: Firewalled with strict ingress/egress rules. DDoS protection active.
- Isolation: Each customer's data is logically isolated at the database level.
- Backups: Encrypted daily backups with 30-day retention. Off-site copies for disaster recovery.
Authentication & Access
- Password Security: Bcrypt hashing with cost factor 12. No plaintext storage.
- Rate Limiting: 5 attempts/minute on login, 1/minute on signup, 200/min general API.
- Session Management: JWT-based with configurable expiry. HttpOnly, Secure, SameSite cookies.
- API Keys: Scoped, revocable API keys with rate limits per key.
Monitoring & Incident Response
- 24/7 Monitoring: Uptime checks every 5 minutes across all services.
- Error Tracking: Real-time error monitoring with Sentry integration.
- Incident Response: Notification within 72 hours of confirmed security breach.
- Audit Logging: All administrative actions logged with timestamps and user identity.
Compliance
- GDPR: Full data subject rights (access, correction, deletion, portability). DPO available.
- CCPA: California Consumer Privacy Act compliance. Opt-out available.
- Data Processing: Standard Contractual Clauses for international data transfers.
- Subprocessors: AWS, GCP, Stripe, SendGrid, PostHog — all contractually bound.
Backup & Disaster Recovery
- Database: Automated daily PostgreSQL dumps. Gzip-compressed, encrypted.
- Full System: Complete system backups (code, config, env, systemd) archived daily.
- Off-site: Backup copies synced to separate storage location.
- Restore: Verified restore procedure. Rollback in under 5 minutes.
Service Level Agreement
Our commitment to uptime and reliability.
| Metric |
Commitment |
Measurement |
| Core Platform Uptime |
99.9% |
Monthly average, excluding scheduled maintenance |
| API Availability |
99.9% |
HTTP 200 responses from health endpoint |
| Post Scheduling |
99.5% |
Posts published within their scheduled window |
| Support Response (Enterprise) |
2 hours |
Business hours, severity 1 incidents |
| Support Response (Standard) |
24 hours |
Business days |
| Data Backup Recovery |
< 5 minutes |
From latest daily backup |