Security & Privacy Controls

All external communication is protected with end-to-end TLS 1.2 or higher, ensuring that data remains encrypted for every hop outside the system’s boundaries. User video never traverses the network at all; it stays entirely on the device, where a local AI model performs 100% of the inference locally. On the server side, multitenancy is enforced by Supabase row-level security, so each tenant can access only its own records and content, and every piece of data rests on encrypted storage backed by Supabase and AWS KMS.

Operational Telemetry

Logs are forwarded by an authenticated Grafana Agent over an encrypted channel. The application code itself is shipped as immutable Netlify deploys—each release is atomic, can be rolled back instantly, and only the most recent, validated assets are ever served. Finally, Netlify adds another layer of protection at the edge by injecting strict security headers, including HSTS, a locked-down Content-Security-Policy, and X-Content-Type-Options, to harden the application against common web threats.