Our services are designed with industry-standard safeguards and undergo continuous improvement to minimize risks.

Data Transmission and Storage

• All communication between users and our services is encrypted using TLS 1.2+. • Sensitive data is encrypted at rest with strong encryption algorithms. • Access to production environments is strictly limited to authorized personnel only when necessary to provide support or maintenance.

Payment Information

• We do not store or process credit card details directly. • All payment transactions are securely handled by Stripe, a PCI-DSS compliant payment provider. • Stripe ensures that your billing information and payment details remain protected with industry-leading security and compliance standards.

Infrastructure Security

• Our infrastructure is hosted on reliable cloud providers with physical and network security controls. • Regular backups are performed to ensure data resilience and recovery in case of incidents. • Firewalls, automated safeguards, and intrusion detection systems help protect against unauthorized access.

Responsible Disclosure

If you discover a potential vulnerability or security issue, please notify us by contacting support@synthdreamlabs.ai with the subject line Security Report. We ask that you do not publicly disclose the issue until we have had a chance to investigate and resolve it. We appreciate and encourage responsible disclosure from the security community.

Compliance

We follow best practices aligned with GDPR (General Data Protection Regulation) and CCPA (California Consumer Privacy Act) to protect user rights. We also reference principles of ISO/IEC 27001 for information security management, even though we are not formally certified at this time.