AboutGet Started
Legal

Security

Infrastructure

Typelessity runs on Vercel (edge functions, prerendered static assets) and OpenAI (gpt-4.1-nano + Whisper). Database: Supabase (Postgres + Row Level Security). EU region for European customers.

Encryption

  • TLS 1.2+ for all in-transit traffic.
  • AES-256 at rest for Supabase storage.
  • Strict CSP, HSTS, X-Frame-Options DENY on all pages.

Access control

  • SSO + 2FA required for all employees.
  • Least-privilege role model. Production access logged and reviewed monthly.
  • Customer data access requires explicit ticket and is fully audited.

Backups

  • Daily automated Postgres snapshots, 30-day retention.
  • Point-in-time recovery to any minute within retention window.

Vulnerability management

  • Annual third-party penetration test.
  • Dependency scanning on every CI run.
  • Responsible disclosure: security@typelessity.com (PGP key on request).

Compliance

GDPR-aligned data flows.