Estimora
Security
Security in Estimora is focused on protecting customer data, controlling access, and ensuring the Service remains reliable for day-to-day work.
Access Control
We use:
- authenticated access for all users
- workspace-level isolation between organizations
- role-based permissions to control access within workspaces
Administrative actions, billing access, and organization-level settings are restricted to authorized users.
Access to production systems is limited to authorized personnel and protected by authentication and access controls.
Infrastructure
Estimora is hosted on Vercel, a modern cloud platform designed for secure and reliable application delivery.
- infrastructure is managed and maintained by Vercel
- deployments are isolated and handled through secure CI/CD pipelines
- production access is restricted and controlled
Where applicable, supporting services (such as databases or storage) are hosted in secure cloud environments with restricted access.
Data Protection
We apply standard industry practices to protect customer data:
- all data in transit is encrypted using HTTPS (TLS)
- access to infrastructure and services is restricted to authorized personnel
- application-level safeguards are used to protect data access
We continuously review security controls as the product evolves to ensure they match real usage and deployment needs.
Backups
We maintain regular backups (where applicable) to support recovery in case of data loss or system failure.
Monitoring
We monitor the system for:
- unusual activity
- potential security issues
- system reliability problems
This helps us detect and respond to incidents in a timely manner.
Incident Response
If we identify a confirmed security incident affecting customer data or service availability:
- we investigate, contain, and remediate it as a priority
- we aim to respond without undue delay
- affected customers are informed when appropriate
Notifications include:
- a description of the incident
- potential impact