Security — PassIQ

PassIQ takes the security of your data seriously. Here’s how we protect it.

Infrastructure

PassIQ runs on Vercel (edge deployment) and Supabase (PostgreSQL with row-level security). All data is encrypted at rest and in transit using TLS 1.3.

Authentication

We use Supabase Auth with JWT tokens. Row-level security (RLS) policies ensure that each organization can only access its own data — enforced at the database layer.

Responsible disclosure

Found a vulnerability? Please report it to security@passiq.app. We aim to respond within 48 hours.

Compliance

PassIQ is designed with GDPR and CCPA principles in mind. Data deletion requests are processed within 30 days. Contact privacy@passiq.app.