We take reasonable measures to protect the confidentiality and integrity of your data. This page summarizes our baseline security posture for the paid pilot.
Platform protections
- Authentication: secure sign-in with session-based access control.
- Access controls: fund membership gating to reduce cross-fund exposure.
- Rate limiting: best-effort protection for API endpoints to reduce abuse.
- Security headers: modern browser hardening headers applied at the edge.
Responsible disclosure
If you believe you’ve found a security vulnerability, please email badri.kazinidhi@gmail.com with details and steps to reproduce. We’ll respond as quickly as possible.
Tips for users
- Use a strong, unique password (if using credentials auth).
- Keep your device secure and up to date.
- Don’t share session tokens or invite links publicly.
Questions? Email badri.kazinidhi@gmail.com.