Security

ZeroContact is designed with the security of your data and notifications as our top priority.

Authentication & Authorization

  • Secure session management with Supabase authentication

  • Data access control with Row Level Security (RLS)

    • Communication Protection

  • All communications encrypted with HTTPS

  • Tamper prevention through Webhook signature verification (HMAC-SHA256)

  • Stripe payments only accept verified webhook signatures

    • Unauthorized Access Prevention

  • API rate limiting

  • Embedded domain restrictions

  • CORS configuration to prevent unauthorized requests

    • Browser Security

  • Content Security Policy (CSP)

  • Clickjacking protection

    • Contact

    For security questions or vulnerability reports, please contact info@kozoinnovation.com