Security you can trust

Your pricing data and customer information is protected by enterprise-grade security. We never expose your service keys to the browser.

Authentication

Powered by Clerk, a SOC 2 compliant authentication provider. Multi-factor authentication, SSO, and secure session management.

Database Security

Your data is stored in Supabase with row-level security (RLS). Each organization's data is completely isolated.

Service Isolation

Quote generation runs on isolated Railway infrastructure. Your API keys and credentials never touch the browser.

Data Privacy

Your pricing data and customer information is never shared or used to train AI models. You own your data.

Our security practices

We follow industry best practices to keep your data safe

All data encrypted in transit (TLS 1.3) and at rest (AES-256)
Row-level security ensures complete data isolation between organizations
API keys and secrets never exposed to browser or client code
Regular security audits and penetration testing
SOC 2 compliant authentication provider (Clerk)
Automatic session expiration and secure token handling
No customer data used for AI model training
GDPR and privacy-compliant data handling

Secure architecture

Built with security-first design principles

Clerk Auth

SOC 2 compliant authentication with MFA support

Supabase

PostgreSQL with row-level security policies

Railway

Isolated compute for AI quote generation

Your API keys and credentials are stored securely on the server. They never touch the browser or client-side code.

Questions about security?

We're happy to discuss our security practices in detail

Contact usStart free