The projects hosted on bandgap.io represent the intellectual property and thought processes of its users. As such, we go to great lengths to ensure your data is secure. Our philosophy is to store the minimal amount of data that we can, but unless there is a breakthrough in homomorphic encryption, we must still hold much of it in plaintext. We answer common security questions below.
User passwords are not stored, only the salted hash of the password is stored.
No, we have a password entropy validator.
You do not give us credit card information. That information is given to Stripe, who then sends us an authentication token. Stripe is a PCI compliant payment provider.
Customer support emails are managed by Protonmail, which is an end-to-end encrypted email provider. Transactional emails are hosted by Sendgrid, which is not an end-to-end framework, but uses TLS nonetheless. All our emails should pass SPF, DKIM and DMARC validation.
When a user deletes a project, the data is irreversibly removed from our servers.
Please write us at firstname.lastname@example.org.Back to top