Encryption in Transit
All data transmitted to and from VoltBee is encrypted using TLS 1.3. We enforce HTTPS on all endpoints with HSTS enabled.
Encryption at Rest
All data stored in our database is encrypted at rest using AES-256. Database hosted on Neon (AWS infrastructure).
Payment Security
We never store credit card numbers. All payments are processed securely through Stripe, a PCI-DSS Level 1 certified provider.
API Key Security
API keys are hashed using bcrypt before storage. We never log or expose full API keys after creation.
Infrastructure Security
VoltBee runs on modern, secure cloud infrastructure:
- API: Deployed on Render with automatic TLS certificates
- Database: Neon PostgreSQL (AWS us-east-1) with automated backups
- Dashboard: Deployed on Vercel with edge caching
- CDN: Global edge network for fast, secure content delivery
Data Protection
We collect only what's necessary to provide our service:
- Email addresses for authentication and communication
- License validation metadata (not personal data of your end users)
- Stripe customer IDs (we don't store payment details)
You can request a full export or deletion of your data at any time by contacting us.
GDPR Compliance
VoltBee is committed to GDPR compliance:
- We process data only as necessary to provide our service
- You control your data โ export or delete anytime
- We use EU-compliant infrastructure (AWS)
- Data Processing Agreement (DPA) available on request
Security Headers
All VoltBee pages include security headers:
Strict-Transport-Securityโ Enforces HTTPSX-Frame-Options: DENYโ Prevents clickjackingX-Content-Type-Options: nosniffโ Prevents MIME sniffingReferrer-Policy: strict-origin-when-cross-origin