Security

Infrastructure Security

• Hosting: Levqor runs on cloud infrastructure with enterprise-grade physical and network security.
• Encryption in Transit: All data transmitted to and from Levqor is encrypted using TLS 1.2 or higher.
• Encryption at Rest: All stored data is encrypted using AES-256 encryption.
• Database Security: PostgreSQL databases are isolated, encrypted, and regularly backed up.

Application Security

• Authentication: Secure, passwordless authentication via magic links with time-limited tokens.
• Session Management: Sessions are securely managed with automatic expiration.
• Input Validation: All user inputs are validated and sanitised to prevent injection attacks.
• Rate Limiting: API endpoints are protected against abuse with rate limiting.

Operational Security

• Access Control: Internal access to systems follows the principle of least privilege.
• Monitoring: Continuous monitoring for anomalies and potential security threats.
• Audit Logging: All significant actions are logged for security and compliance purposes.
• Incident Response: Defined procedures for detecting, responding to, and recovering from security incidents.

Your Credentials

When you connect third-party services to Levqor, we handle your credentials securely:

• API keys and tokens are encrypted before storage
• We use OAuth where available to avoid storing passwords
• You can revoke access to connected services at any time