Security
Your data is safe with Dyrect
We take security seriously at every layer โ from the infrastructure we run on to the code we ship.
Report a Vulnerability โOur Security Practices
Data Encryption
All data is encrypted in transit using TLS 1.2+ and at rest using AES-256. Customer data is never stored in plaintext.
Infrastructure
Dyrect is hosted on enterprise-grade cloud infrastructure with SOC 2 compliant data centers, automatic failover, and daily backups.
Access Control
Role-based access controls (RBAC) ensure team members only access the data they need. All internal access is logged and audited.
Application Security
We follow OWASP best practices. Our codebase undergoes regular security reviews and dependency audits to catch vulnerabilities early.
Network Security
Firewall protection, DDoS mitigation, and continuous network monitoring are in place across all our systems.
Compliance
Dyrect is designed to help brands comply with GDPR and CCPA. We act as a data processor and provide data processing agreements (DPAs) on request.
Responsible Disclosure
If you discover a security vulnerability in Dyrect's products or infrastructure, we encourage responsible disclosure. Please email us directly and we commit to acknowledging your report within 48 hours and resolving confirmed issues as quickly as possible.
Data & Privacy
Dyrect processes customer data solely to provide the services described in our Terms of Use. We do not sell personal data to third parties. Customer data is isolated per account and never used to train models or shared across tenants.
We provide Data Processing Agreements (DPAs) to customers who require them for GDPR compliance. Contact privacy@dyrect.co to request a DPA.
For more details on how we handle personal data, please review our Privacy Policy.
Questions about security?
Our team is happy to answer any security-related questions or provide documentation for your security review.
security@dyrect.co โ