← HostingBrain

Security

The one-pager for vendor reviews — last updated 2026-07-04

Architecture

Serving infrastructure is physically separated from data production. The public endpoint is fronted by Cloudflare (TLS 1.3, DDoS protection) and connected via outbound-only tunnel — the serving host accepts no inbound connections and exposes no ports. The analytical dataset served is a read-only weekly snapshot; production systems are never reachable from the public surface.

Authentication & authorization

Data protection

Honest scope

We are a small, pre-launch product and say so: no SOC 2 yet, no formal certifications. What you get instead is a minimal attack surface (one endpoint, read-only data, no inbound network path), current patching, and a founder who answers security questions directly at [email protected].