Security

Last updated: January 19, 2026

Our Commitment

Security is foundational to Solvyr. We build our platform with security as a core requirement, not an afterthought. This page describes how we protect your data and what you can do to help.

Infrastructure Security

  • All data transmitted over HTTPS with TLS 1.2+
  • Regular security updates and patches
  • Firewall protection and intrusion detection
  • Isolated application environments
  • Regular backups with encrypted storage

Application Security

  • Passwords hashed using bcrypt with strong work factors
  • CSRF protection on all forms
  • SQL injection prevention via prepared statements
  • XSS protection through output encoding
  • Rate limiting on authentication endpoints
  • Session management with secure, HTTP-only cookies

Access Control

  • Role-based access control (RBAC)
  • Explicit entitlements required for each application
  • Admin access requires two-factor authentication (OTP)
  • Session timeouts for inactive users
  • Audit logging of administrative actions

Data Protection

  • Data encrypted in transit and at rest where applicable
  • Minimal data collection principle
  • Regular data retention reviews
  • Secure data deletion procedures

Your Responsibilities

Help us keep your account secure:

  • Use a strong, unique password
  • Never share your login credentials
  • Log out when using shared devices
  • Keep your email address current for security notifications
  • Report suspicious activity immediately

Reporting Security Issues

If you discover a security vulnerability, please report it responsibly:

Email: security@solvyr.tech

Please include:

  • Description of the vulnerability
  • Steps to reproduce
  • Potential impact
  • Your contact information

We will acknowledge receipt within 48 hours and work to address valid reports promptly. We ask that you not publicly disclose issues until we've had reasonable time to respond.

Incident Response

In the event of a security incident:

  • We will investigate and contain the issue
  • Affected users will be notified as required by law
  • We will provide guidance on protective actions
  • We will implement measures to prevent recurrence

Questions

For security-related questions:

Email: security@solvyr.tech

← Back to Home