How we protect credentials, payments, and your data.
Last updated: July 2026
Upstream provider keys are encrypted at rest with AES-GCM before storage. Traffic is served over TLS. Secrets are never logged or returned to clients.
Platform keys are shown once at creation and stored only as salted hashes. We cannot recover a lost key; you can revoke and reissue at any time.
Payments are processed through Bakong KHQR and Binance Pay. We verify payment callbacks with signature checks and credit wallets idempotently to prevent double-crediting.
Administrative actions are role-gated and recorded in an immutable audit trail. Wallet changes are written as append-only billing entries.
We monitor for errors and abuse and health-check upstream credentials continuously, evicting failing keys from the routing pool automatically.
If you discover a vulnerability, please report it to us privately so we can address it before public disclosure.