One account. Every tool your business needs.Start free
nsxia
Security

Security at nsxia

We take the security of your business data seriously. Here's exactly what we do to keep it safe.

TLS 1.3

Encryption in transit

AES-256

Encryption at rest

2FA

Multi-factor auth

SOC 2

Compliance roadmap

Our security practices

Defence in depth β€” multiple layers of controls protect every layer of the stack.

Encryption everywhere

  • All data encrypted in transit via TLS 1.2 or TLS 1.3
  • Database storage encrypted at rest with AES-256
  • Backups encrypted with separate keys
  • Passwords hashed using bcrypt (cost factor 12)
  • JWT tokens signed with RS256

Infrastructure security

  • Hosted on AWS with VPC network isolation
  • PostgreSQL via Neon serverless with connection pooling
  • Automated daily backups with 30-day retention
  • HTTPS-only with HSTS headers enforced
  • DDoS protection via Cloudflare

Access controls

  • Role-based access: Owner, Admin, Member, Viewer per org
  • Module-level subscription gating
  • Full audit log for every destructive action
  • Session management with device tracking
  • IP-based login anomaly detection

Authentication hardening

  • TOTP-based two-factor authentication (TOTP/authenticator apps)
  • Brute-force lockout after 10 failed attempts
  • Secure password reset with short-lived signed tokens
  • Email verification required on signup
  • SSO support via OAuth 2.0 (Google, GitHub)

Responsible disclosure

We take security reports seriously. If you discover a vulnerability in our platform, please report it to us before public disclosure so we can address it promptly.

Reporting a vulnerability

  • Email: [email protected]
  • Include a clear description and reproduction steps
  • We will acknowledge receipt within 24 hours
  • We aim to resolve critical issues within 72 hours
  • We will credit you in our security acknowledgements (optional)

Please do not access or modify user data as part of testing. Automated scanning tools and denial-of-service testing are not permitted.

Compliance & certifications

Our current compliance posture and roadmap.

GDPR

Compliant

We comply with EU General Data Protection Regulation. Data subject rights, DPA available, EU data residency on request.

SOC 2 Type II

In progress

We are actively working toward SOC 2 Type II certification. Controls are in place; audit begins Q4 2026.

CCPA

Compliant

California Consumer Privacy Act compliance. We honour data deletion, opt-out, and portability requests.

Have a specific security question about running nsxia in your organisation?

Contact our security team