At SyllabusSync, we take the security of your data seriously. We implement industry-standard security measures to protect your personal information and ensure the confidentiality, integrity, and availability of our service.
Data Encryption
Encryption in Transit
All data transmitted between your device and our servers is encrypted using TLS 1.3, the latest and most secure transport layer security protocol.
Encryption at Rest
All data stored in our databases is encrypted using AES-256 encryption, ensuring your information remains secure even if physical storage is compromised.
Authentication & Access Control
OAuth 2.0: We use Google OAuth 2.0 for secure authentication
Multi-Factor Authentication: Supported through Google's security features
Session Management: Secure session tokens with automatic expiration
Access Controls: Role-based access control for internal systems
API Security: Rate limiting and request validation on all endpoints
Infrastructure Security
Cloud Infrastructure
Our services are hosted on Supabase, which provides enterprise-grade security with SOC 2 Type II compliance and regular security audits.
Network Security
All network traffic is protected by firewalls, DDoS protection, and intrusion detection systems.
Data Centers
Our data is stored in secure, certified data centers with 24/7 physical security and environmental controls.
Backup & Recovery
Regular automated backups with point-in-time recovery capabilities ensure data availability and disaster recovery.
Data Processing & Privacy
Minimal Data Collection: We only collect data necessary for service functionality
Temporary Processing: Uploaded documents are processed temporarily and not permanently stored
Data Anonymization: Personal identifiers are removed from analytics data
Third-Party Integrations: All integrations follow strict security protocols
Data Retention: Clear policies on how long different types of data are retained
Security Monitoring
We continuously monitor our systems for security threats and vulnerabilities:
24/7 automated security monitoring and alerting
Regular security assessments and penetration testing
Vulnerability scanning and patch management
Security incident response procedures
Employee security training and background checks
Compliance & Certifications
We adhere to industry standards and regulations:
GDPR: General Data Protection Regulation compliance
CCPA: California Consumer Privacy Act compliance
SOC 2: Service Organization Control 2 Type II (through Supabase)
ISO 27001: Information Security Management System standards
Reporting Security Issues
If you discover a security vulnerability or have security concerns, please report them immediately:
Email: security@syllabussync.com
Response Time: We aim to respond within 24 hours
Responsible Disclosure: We follow responsible disclosure practices
Bug Bounty: We may offer rewards for valid security reports
Your Security Responsibilities
While we implement strong security measures, you also play a role in keeping your account secure:
Use a strong, unique password for your Google account
Enable two-factor authentication on your Google account
Keep your devices and browsers updated
Log out of shared or public computers
Report any suspicious activity immediately
Only upload documents you have permission to process
Contact Us
For any security-related questions or concerns, please contact our security team at security@syllabussync.com. For general inquiries, reach out to support@syllabussync.com.