1. Infrastructure & Data Protection
Athlete Intro implements industry-standard security measures to protect your data. Our security practices include:
- SOC 2 Type II compliant hosting and database infrastructure
- Data encrypted in transit (TLS 1.2+) and at rest (AES-256)
- Automatic HTTPS/TLS encryption for all connections
- Daily automated backups with secure retention
- Network security measures including DDoS protection and rate limiting
- Row-level security policies enforced on all user data
Detailed Documentation Available: For comprehensive information about our security infrastructure, database architecture, backup procedures, and technical specifications, please contact info@getzoptic.com.
2. Audit Logging
We maintain comprehensive audit trails:
- Profile creation and edits
- Who made changes and when
- Access code usage
- Account changes
3. User-Submitted Data
Athlete Intro does not find, link, or create content on your behalf. All data is self-reported by you, OR added by authorized editors with your permission.
We track all changes with timestamps and user attribution.
4. Authentication
- Passwordless magic link authentication
- Links expire after short time period
- Single-use links prevent replay attacks
- Session timeouts configured for security
5. Third-Party Security Compliance
Our payment processing partner Stripe maintains PCI DSS Level 1 certification, the highest level of security compliance in the payment card industry.
6. Reporting Security Issues
Report potential vulnerabilities to info@getzoptic.com.
7. Limitations
No system is 100% secure. We implement industry-standard practices but cannot guarantee absolute security.