At OnSefy, protecting your data is a core responsibility. We follow modern best practices to ensure that your personal and usage data remain safe, private, and under your control.

---

🛡️ End-to-End Protection

We implement multiple layers of security across our infrastructure, including:

• Encrypted data transmission using TLS 1.2+ (HTTPS) for all client-server communication
• Secure storage of user data with AES-256 encryption at rest
• Regular security audits and vulnerability scans across systems

🔐 Industry-Standard Encryption

All data is stored on encrypted cloud infrastructure (AES-256 at rest). Sensitive information is further protected through secure transmission (TLS) and strict access controls.

• TLS 1.2+ for data in transit (web and API traffic)
• Hashed passwords using bcrypt with strong salting

Encryption keys are managed securely using role-based access controls and restricted infrastructure access.

👤 User Data Privacy

Your personal data is only used to provide services to you. It is never shared with third parties for marketing or profiling purposes.

You have full control over your data, including the ability to request access or permanent deletion in accordance with our Privacy Policy.

⚠️ Breach Response and Monitoring

Our systems are continuously monitored for threats. In the unlikely event of a data breach:

• We will notify affected users promptly
• We will take immediate action to contain and resolve the issue
• We will provide full transparency into what occurred and how we mitigated it

📬 Questions or Security Concerns?

If you have any concerns or want to report a potential vulnerability, please contact our security team - here.