Trust Center
Security, privacy, and compliance are built into the foundation of EcoSynch. We operate with a "Safety First" architecture.
End-to-End Encryption
Your data is encrypted in transit via TLS 1.2+ and at rest using industry-standard AWS KMS (AES-256). Critical API Keys are isolated in a dedicated Secrets Manager vault.
Tenant Isolation
We utilize a strict multi-tenant architecture with logical isolation. Every database record is keyed by Tenant ID, enforced at both the application and database level to prevent data leaks.
Least Privilege Access
We adhere to the principle of least privilege. Our app requests only read:jira-work and write:confluence-content. We never request access to user directories, admin settings, or billing data.
GDPR & Sovereignty
Built for compliance. All data processing and storage occurs strictly within the EU (AWS Ireland & Google Belgium). We support Data Processing Addendums (DPA) and Standard Contractual Clauses (SCCs).
Have specific compliance questions? Contact our Security Team.