Security Center

At ViewExport, security is our top priority. We implement comprehensive security measures to protect your data and maintain the integrity of our systems.

Security Overview

Key Security Features

• End-to-End Encryption: All data transmissions are encrypted using TLS 1.3
• Multi-Factor Authentication: Optional 2FA for enhanced account security
• Regular Security Audits: Third-party security assessments and penetration testing
• Rate Limiting: Protection against brute force and DDoS attacks
• Secure Development: Security-first development practices and code reviews

Responsible Disclosure

We take security vulnerabilities seriously and appreciate the security research community's efforts in helping us maintain a secure platform.

Reporting Security Issues

If you believe you've found a security vulnerability in our platform, please report it to us responsibly:

1. Email us at privacy@viewexport.com
2. Include a detailed description of the vulnerability
3. Provide steps to reproduce the issue
4. Allow us reasonable time to address the issue before public disclosure

Infrastructure & Security

Infrastructure

Our application is hosted on Render.com, a secure cloud platform. All data is stored in managed PostgreSQL databases and encrypted using AES-256 at rest and TLS 1.2+ in transit.

Authentication

• Passwords are hashed using industry best practices (bcrypt)
• All admin and privileged users are required to use two-factor authentication
• We support role-based access control and least-privilege principles

Compliance

• While we are not yet SOC 2 certified, we follow many of the same practices
• Our infrastructure provider is audited to SOC 2, ISO 27001, and GDPR standards
• We offer a Data Processing Addendum (DPA) on request for GDPR compliance

Incident Response

We monitor our systems continuously. If we detect a data breach, we will notify affected users within 72 hours and take immediate steps to contain the issue.

Security Best Practices

For Your Account

• • Use a strong, unique password for your ViewExport account
• • Enable two-factor authentication (2FA)
• • Regularly review your account's login activity
• • Keep your recovery email address up to date
• • Never share your login credentials

For Your Team

• • Regularly review and audit team member access
• • Remove access for former team members promptly
• • Use role-based permissions appropriately
• • Monitor account activity logs

Data Protection

Data Encryption

All data is encrypted both in transit and at rest:

• • In Transit: TLS 1.3 encryption for all connections
• • At Rest: AES-256 encryption for stored data
• • Backups: Encrypted backups with restricted access

Access Controls

We implement strict access controls:

• • Role-based access control (RBAC)
• • Principle of least privilege
• • Regular access audits
• • Multi-factor authentication for administrative access

Compliance

We maintain compliance with:

• • GDPR (General Data Protection Regulation)
• • CCPA (California Consumer Privacy Act)
• • SOC 2 Type II (in progress)