Data Protection & Privacy

End-to-End Encryption

All sensitive data is encrypted both in transit and at rest using industry-standard encryption protocols. Your personal information, documents, and communications are protected with AES-256 encryption.

Secure Infrastructure

Our application runs on secure cloud infrastructure with regular security updates, automated backups, and comprehensive monitoring. We use Supabase, a trusted platform with enterprise-grade security.

Authentication & Access Control

1

Multi-Factor Authentication (2FA)

Enhanced account security with optional two-factor authentication. Receive secure codes via email to verify your identity when logging in from new devices.

2

Role-Based Access Control

Different user roles (Planner, Amigo, Admin) have specific access permissions. Amigos can only access information you've explicitly shared with them.

3

Secure Session Management

Automatic session timeouts and secure token management ensure your account remains protected even if you forget to log out.

Data Storage & Backup

Secure Document Storage

Uploaded documents are stored securely with encrypted access. Only you and designated Amigos can view documents you've shared. All file uploads are scanned for security threats.

Automated Backups

Your data is automatically backed up multiple times daily with redundant storage across secure locations. This ensures your information is never lost and can be recovered if needed.

Compliance & Security Standards

Australian Privacy Principles (APP) Compliance

We adhere to the Australian Privacy Principles, ensuring your personal information is collected, used, and stored in accordance with Australian law.

Regular Security Audits

Our security practices are regularly reviewed and updated. We conduct periodic security assessments and penetration testing to identify and address potential vulnerabilities.

Your Rights & Control

Data Access & Portability

You can access, download, or export your data at any time. We provide easy-to-use tools to manage your information and control who has access to it.

Account Deletion

You have the right to delete your account and all associated data. When you request deletion, we permanently remove your information from our systems within 30 days.