Security

ChronosCodex is built to protect the sensitive data insurance agencies handle. The platform follows defense-in-depth practices across encryption, access control, tenant isolation, and monitoring.

Encryption

Sensitive identifiers such as Social Security Numbers are encrypted at rest with strong, modern encryption and are revealed only through audited, access-controlled actions. Traffic is served over HTTPS behind Cloudflare.

Access control & authentication

• Multi-factor authentication, with step-up verification on the most sensitive modules
• Role-based access and least-privilege server access
• Audit logging on sensitive data access

Tenant isolation

Each agency's data is isolated from every other tenant, enforced at the database layer so one customer can never see another's records.

Resilience

Data is backed up on a regular schedule, and the platform runs behind edge protection to mitigate abuse.

Responsible disclosure

If you believe you have found a security issue, please contact us at [email protected].

Questions? Contact [email protected].