🔒

Security at Bestemail

Your data security is our top priority. Here's how we protect your information.

🔐

Encryption in Transit

  • All data transmitted over TLS 1.3
  • HTTPS enforced on all endpoints
  • Certificate pinning for API connections
🗄️

Encryption at Rest

  • AES-256 encryption for stored data
  • Database encryption via Supabase
  • Encrypted backups
💳

Payment Security

  • Payments processed by Razorpay (PCI DSS Level 1 compliant)
  • We never store credit card numbers or CVV
  • Tokenized payment methods for recurring billing
  • UPI, cards, and net banking secured by Razorpay
✉️

Email Security

  • DKIM signing for all outbound emails
  • SPF records for sender verification
  • DMARC policies to prevent email spoofing
  • One-click Cloudflare DNS setup for domain authentication
🏗️

Infrastructure

  • Hosted on Supabase (SOC 2 Type II compliant)
  • Regular security patches and updates
  • Automated backups with point-in-time recovery
  • DDoS protection via Cloudflare
🔑

Access Control

  • Role-based access control (RBAC) for team accounts
  • Two-factor authentication available
  • Session management and auto-logout
  • IP-based access restrictions (Enterprise plan)

Data Protection

We follow industry best practices for data protection.

  • Data minimization — we only collect what is necessary
  • Purpose limitation — data is used only for stated purposes
  • Strict access controls — limited to authorized personnel
  • Regular audits — periodic reviews of data handling practices

Compliance

  • Information Technology Act, 2000 compliance
  • Personal Data Protection compliance
  • Anti-spam law compliance (CAN-SPAM, GDPR awareness)
  • Regular third-party security assessments

Responsible Disclosure

Found a vulnerability? We appreciate responsible disclosure.

Report to: security@bestemail.in

We take all reports seriously and will respond within 48 hours.

We will not take legal action against researchers who act in good faith.

0
Data Breaches
99.9%
Uptime
24/7
Monitoring