Security

All traffic is served over TLS 1.2+ with HSTS. Data at rest is encrypted with AES-256 on managed cloud storage.

Production access is restricted to a small on-call team using SSO + hardware-key MFA. All admin actions are audit-logged.

Customer data is logically isolated at the database level. Row-level security policies enforce that an account only ever reads its own rows.

Encrypted database backups run continuously with point-in-time recovery for the last 14 days.

Found a vulnerability? Email security@linkpunch.io. We respond within 2 business days and will not pursue legal action against good-faith research.