Security at ASYSORA
This page is maintained by the ASYSORA team to answer common questions about how we protect your data. It is not an independent certification.
Browser-first processing
PDF, image, audio, video and Office tools run 100% in your browser. Files never leave your device unless you explicitly upload them to an AI tool.
Encryption in transit
All API and website traffic is served over HTTPS with modern TLS. Session cookies are HttpOnly and Secure.
Modern authentication
Email + password with a leaked-password check, Google sign-in, and refresh-token rotation managed by our authentication provider.
Managed infrastructure
Data is stored in a managed Postgres backend with row-level security. Automatic daily backups and point-in-time recovery.
Payments handled by Paddle
Card details are collected and stored by Paddle, a certified merchant of record. ASYSORA never sees or stores raw payment information.
Shared responsibility
We secure the platform. You control accounts, roles and which tools your team uses — see our Privacy Policy for details.
Report a vulnerability
If you believe you have found a security issue, please email support@asysora.com with steps to reproduce. We aim to acknowledge reports within 2 business days and will keep you updated as we investigate.
Please avoid accessing other users' data, degrading service, or public disclosure before we've had a chance to remediate.