Security Overview
Your trust is our top priority. Learn how we protect your data and keep your accounts secure.
Encrypted at Rest
All data is encrypted using AES-256 encryption standard.
SOC 2 Type II
Certified compliant with SOC 2 Type II security standards.
GDPR Ready
Full compliance with GDPR data protection regulations.
Infrastructure Security
Cloud Infrastructure
PostZen is hosted on industry-leading cloud providers (AWS/GCP) with 99.99% uptime SLA, multi-region redundancy, and automatic failover capabilities.
Network Security
All traffic is encrypted using TLS 1.3. We employ WAF, DDoS protection, and network segmentation to protect against attacks.
Database Security
Databases are encrypted at rest, backed up continuously, and isolated in private subnets with strict access controls.
Data Protection
Encryption
At Rest: AES-256 encryption for all stored data
In Transit: TLS 1.3 for all data transmission
Tokens: Social media tokens are encrypted with separate key management
Data Isolation
Each customer's data is logically isolated. We implement row-level security to ensure users can only access their own data.
Backups & Recovery
Automated daily backups with point-in-time recovery capability. Backups are encrypted and stored in geographically separate locations.
Access Control
Authentication
Secure password hashing with bcrypt, optional two-factor authentication (2FA), and support for SSO via SAML 2.0 (Enterprise plans).
Role-Based Access Control
Fine-grained permissions allow you to control what team members can see and do. Assign Admin, Editor, or Viewer roles as needed.
Session Management
Secure session tokens with automatic expiration, device tracking, and the ability to revoke sessions remotely.
Compliance & Certifications
SOC 2 Type II
Independently audited for security, availability, and confidentiality controls.
GDPR Compliant
Full compliance with EU General Data Protection Regulation requirements.
CCPA Compliant
Meets California Consumer Privacy Act requirements for data protection.
ISO 27001
Information security management system certification (in progress).
Employee Security
Background Checks
All employees undergo background checks before joining the team.
Security Training
Regular security awareness training for all employees, including phishing simulations and secure coding practices.
Least Privilege Access
Employees only have access to systems and data necessary for their role. Access is reviewed quarterly.
Vulnerability Management
Penetration Testing
Annual third-party penetration testing by certified security professionals.
Dependency Scanning
Automated scanning of all dependencies for known vulnerabilities with immediate patching of critical issues.
Bug Bounty Program
We maintain a responsible disclosure program. Security researchers can report vulnerabilities to security@postzen.io.
Incident Response
24/7 Monitoring
Our security team monitors systems around the clock for suspicious activity and potential security incidents.
Incident Response Plan
Documented incident response procedures with defined roles, communication plans, and escalation paths.
Breach Notification
In the unlikely event of a data breach, we will notify affected customers within 72 hours as required by GDPR.
Security Questions?
If you have any security questions or concerns, please contact us:
- Email: support@postzen.in
- Managed by: Shivam Pandey
- Address: #36/1, 1st Main Road, 3rd Cross, Near GM Temple Street, Matadahalli, Near RT Nagar PO - 560032, Bangalore, India