Security and compliance you can trust

We follow GDPR requirements. You can access, export, or delete your data at any time. We document how we process your information and retain it only as long as needed.

All sensitive data is encrypted at rest and in transit using AES-256 encryption. Your information is protected whether it's stored in our database or being transmitted over the network.

We never use your data to train models, and our AI providers are configured with zero-retention policies so your information isn't stored or reused.

All data is stored in secure UK data centres in the London region. Third-party processing happens within the EU/EEA with appropriate safeguards.

We publish our privacy policy, data retention policy, terms of service, and record of processing activities. Everything is documented and publicly accessible.

All payments are processed through Stripe. We never store your card details on our servers - payment information is handled entirely by Stripe's PCI-compliant infrastructure.

Your data is automatically backed up every 24 hours with 7-day retention. Backups are stored across multiple geographic locations to ensure data availability and disaster recovery.

We monitor our systems 24/7 for security incidents and errors. Any suspicious activity or system issues are detected immediately so we can respond quickly.

We maintain a vulnerability disclosure policy and take security reports seriously. Found a security issue? We want to hear from you.