Trust

Security at ASYSORA

This page is maintained by the ASYSORA team to answer common questions about how we protect your data. It is not an independent certification.

Browser-first processing

PDF, image, audio, video and Office tools run 100% in your browser. Files never leave your device unless you explicitly upload them to an AI tool.

Encryption in transit

All API and website traffic is served over HTTPS with modern TLS. Session cookies are HttpOnly and Secure.

Modern authentication

Email + password with a leaked-password check, Google sign-in, and refresh-token rotation managed by our authentication provider.

Managed infrastructure

Data is stored in a managed Postgres backend with row-level security. Automatic daily backups and point-in-time recovery.

Payments handled by Paddle

Card details are collected and stored by Paddle, a certified merchant of record. ASYSORA never sees or stores raw payment information.

Shared responsibility

We secure the platform. You control accounts, roles and which tools your team uses — see our Privacy Policy for details.

Report a vulnerability

If you believe you have found a security issue, please email support@asysora.com with steps to reproduce. We aim to acknowledge reports within 2 business days and will keep you updated as we investigate.

Please avoid accessing other users' data, degrading service, or public disclosure before we've had a chance to remediate.