All data is encrypted in transit using TLS 1.2+ and at rest using AES-256. Authentication tokens are stored in HttpOnly, Secure, SameSite cookies.
We enforce role-based access control (RBAC) at the company and project level. Administrative actions are logged for audit purposes.
Our infrastructure is hosted on Amazon Web Services (AWS) in Australia (the Sydney region) with redundant backups, DDoS protection, and automated vulnerability scanning.
If you discover a security issue, please contact us immediately at security@alesko.ai.