Security

Your security is our top priority

🔒 Data Encryption

  • • All data is encrypted in transit using TLS 1.3
  • • API keys are encrypted at rest using AES-256
  • • Database connections use SSL encryption
  • • Passwords are hashed using bcrypt

👤 Authentication

  • • OAuth 2.0 with Google and GitHub
  • • No passwords stored for OAuth users
  • • Session tokens expire after 7 days
  • • Two-factor authentication (coming soon)

🛡️ Privacy

  • • We never sell your data
  • • Your conversations are private
  • • We don't train AI models on your data
  • • You can delete your account anytime

Read our full Privacy Policy

✅ Compliance

  • • GDPR compliant
  • • CCPA compliant
  • • SOC 2 Type II (in progress)
  • • Regular security audits

🚨 Report a Security Vulnerability

If you discover a security issue, please report it responsibly. Do not disclose it publicly until we've had a chance to address it.

Email: security@cachegpt.app