Built for global teams, client operations, and growth-stage businesses.
info@ideadunes.com +91-7709399141 Interactive Demo

Trust & Security

Your Data Security Is Our Priority

Comprehensive security, privacy, and compliance practices to protect your business.

Security Architecture

Authentication & Access Control

  • Dual authentication: JWT tokens (HMAC-SHA256) + server-side sessions
  • Two-factor authentication (2FA) with TOTP support
  • Magic link passwordless login option
  • Role-based access control (RBAC) with 4 permission tiers
  • Session timeout and automatic expiry controls
  • CSRF protection on all forms and API endpoints
  • Rate limiting on authentication endpoints

Data Protection

  • TLS 1.3 encryption for all data in transit
  • AES-256 encryption for data at rest
  • Bcrypt password hashing with per-user salts
  • Parameterized queries preventing SQL injection
  • Content Security Policy (CSP) headers
  • XSS prevention with output encoding
  • Automated daily backups with point-in-time recovery

Compliance & Certifications

GDPR

Full compliance with EU General Data Protection Regulation. Data portability, right to erasure, and consent management built in.

Learn More

CCPA

California Consumer Privacy Act compliance with consumer rights, opt-out mechanisms, and data disclosure controls.

Learn More

DPA

Data Processing Agreement available for all enterprise customers. Covers data handling, sub-processors, and breach notification.

Learn More

SLA

Service Level Agreement with 99.9% uptime guarantee, defined response times, and credit-based remediation.

Learn More

Infrastructure Security

Production Environment

  • Docker containerized application with isolated services
  • Network segmentation and firewall rules
  • Automated vulnerability scanning
  • DDoS protection and WAF
  • Health monitoring with automated alerting

Development Practices

  • Static analysis with PHPStan & Psalm
  • Automated test suite with PHPUnit
  • Code review mandatory for all changes
  • Dependency auditing and updates
  • OWASP Top 10 security checklist compliance

Security & Legal Documents

Terms of Service
Privacy Policy
Cookie Policy
GDPR Compliance
CCPA Compliance
Data Processing Agreement
Acceptable Use Policy
Sub-processors List
Security Practices

Have Security Questions?

Our security team is available to discuss your specific compliance and security requirements.

Contact Security Team System Status