How Is My Data Protected?

How Is My Data Protected?

Security is a core part of how DMCA Bot is built. Below are the key measures in place.

Data in Transit

All communication between your browser and our servers is encrypted using TLS 1.2+. We enforce HTTPS on all endpoints.

Data at Rest

Sensitive data (passwords, API keys, email account credentials) is encrypted before being stored in the database. Passwords are hashed using bcrypt with a high work factor.

Authentication

• Passwords must meet complexity requirements (8+ characters, mixed case, numbers, symbols).
• Accounts are locked after repeated failed login attempts.
• OAuth providers (Google, Facebook, Apple) are supported for password-free login.

Access Controls

• Internal database IDs are never exposed via the API.
• Admin access is role-based and audited (every admin action is logged).
• API keys are hashed; only the key prefix is stored in plain text.

Payment Security

All payment processing is handled by Stripe, a PCI-DSS Level 1 compliant provider. DMCA Bot never stores your card details.

Infrastructure

• Database access is restricted to application servers via firewall rules.
• Regular automated backups are taken and stored in an isolated location.