Security is our Foundation

We protect the livelihoods of skilled workers. That responsibility drives every architectural decision we make.

Defense in Depth

Our infrastructure runs on the edge, ensuring low latency and high resilience without centralized points of failure.

Edge Architecture
Client Request
↓
Cloudflare WAF (DDoS Protection)
↓
Cloudflare Workers (Serverless Compute)
↙ ↘
Cloudflare D1 (SQL Database) Cloudflare R2 (Encrypted Storage)

Security Controls

Encryption at Rest

All customer data is encrypted using AES-256 before it ever touches our disk.

Encryption in Transit

We enforce TLS 1.3 for all web traffic. We score an 'A+' on Qualys SSL Labs.

Role-Based Access

Strict internal access controls ensure only authorized engineers can access production data.

Daily Backups

Point-in-time recovery allows us to restore your workforce data to any second in the last 30 days.

Vulnerability Scanning

Automated scanners check our code and dependencies for security flaws on every deploy.

SOC 2 Type II Ready

Our controls are mapped to AICPA trust principles. Audit report available upon request.

Sub-processors

Transparency is key. View the full list of third-party vendors we use to process data, including their locations and purposes.

View Sub-processor List →

Legal & Privacy

Review our Terms of Service, Privacy Policy, and Data Processing Agreement (DPA) to understand your rights.

Visit Legal Hub →