Security
Security is not a feature. It's the foundation.
Sitemarks is built with security at every layer. From encryption to access controls, we protect your data with modern infrastructure and secure development practices.
Encryption
All data is encrypted at rest using AES-256 and in transit using TLS 1.3. Internal service-to-service communication is secured with Istio mutual TLS.
Infrastructure
Sitemarks runs on Kubernetes with Istio service mesh. Our infrastructure is defined as code using Helm charts, with health checks, readiness probes, and automated rollbacks.
Access Control
Role-based access control lets you manage who can view, comment, and administer projects. SSO/SAML integration available for enterprise customers through better-auth.
Authentication
Integrate with your identity provider using SAML 2.0 or OpenID Connect. SCIM provisioning for automated user management. Multi-factor authentication support.
Audit Logging
Track actions across your organization with audit logs. Monitor who accessed what and when for compliance and security oversight.
Practices
Operational security
Our day-to-day practices ensure continuous protection across all services.
Backup & Recovery
Automated database backups with point-in-time recovery via CNPG PostgreSQL operator.
Monitoring
Application monitoring with health checks, readiness probes, and structured logging across all services.
Incident Response
Documented incident response procedures with severity levels and escalation paths.
Secure Development
TypeScript strict mode, input validation, and code review practices for all changes.
Have a security question?
Our team is available to answer questions and discuss your organization's specific requirements.
Report vulnerabilities to security@sitemarks.ai