Loading...
BETA – We are refining the platform. Your feedback helps us improve. Share feedback
Loading...
Our commitment to keeping your data safe, and how to report vulnerabilities.
Citable ESG Orgs. is built with security as a priority. All data is encrypted in transit using TLS. Passwords are hashed using bcrypt. Authentication tokens are stored securely and rotated regularly. We use parameterised queries to prevent SQL injection, and all user inputs are sanitised.
The platform is hosted on infrastructure with automated backups, DDoS protection, and monitoring. Database access is restricted and audited. We conduct regular dependency audits and keep all packages up to date.
We encourage responsible disclosure of security vulnerabilities. If you discover a vulnerability in Citable ESG Orgs., please report it to us so we can address it promptly.
This policy covers the Citable ESG Orgs. web application and API. Third-party services (Stripe, authentication providers) have their own security policies and should be reported to those providers directly.