Security

How We Keep Your Data Safe

Security isn't just a feature - it's fundamental to everything we do at Korus. Here's how we protect your conversations and data.

Encryption Everywhere

In Transit

All data between you and Korus is encrypted using:

• TLS 1.3 for all connections
• Certificate pinning for extra security
• No data ever travels unencrypted

At Rest

Your stored data is protected with:

• AES-256 encryption
• Encrypted database backups
• Secure key management

Infrastructure Security

• Secure Hosting: We use industry-leading cloud providers with SOC 2 compliance
• Regular Updates: All systems are kept up-to-date with security patches
• Monitoring: 24/7 monitoring for suspicious activity
• Backups: Regular encrypted backups in geographically distributed locations

Access Controls

We limit access to your data:

• Engineers access data only when necessary for support
• All access is logged and audited
• Two-factor authentication for all team members
• Principle of least privilege for all systems

AI Provider Security

When your conversations are processed by AI:

• Data is sent securely to OpenAI, Anthropic, or Google
• We use their enterprise APIs with data retention agreements
• Your conversations aren't used to train their models
• Data is deleted from their systems after processing

Your Security Options

You can enhance your account security:

• Enable two-factor authentication (coming soon)
• Use a strong, unique password
• Review your active sessions regularly
• Export and backup your important conversations

Compliance

We maintain compliance with:

• GDPR (General Data Protection Regulation)
• CCPA (California Consumer Privacy Act)
• Industry best practices and standards

Report Security Issues

Found a security issue? We appreciate responsible disclosure.

Please email: security@korus.chat

We'll respond within 24 hours and work with you to resolve any issues.