Legal

Security Overview

Published: March 29, 2026

This page summarizes the current operating-security posture of MyFirstInsurTec. It is a general overview, not a certification or third-party audit report.

Current Controls

• managed infrastructure through Cloudflare and Supabase
• TLS for data in transit
• environment-managed secrets for production runtime services
• role-based access control within the application where supported
• operational health checks for deployment and data freshness

Billing And Authentication

• payments are processed by Stripe
• authentication and core application state are handled through Supabase
• full payment card details are not stored in our application database

Reporting A Security Concern

If you believe you have identified a security issue, contact hello@myfirstinsurtec.com. Please include enough detail for us to reproduce and assess the issue.

Enterprise Diligence

Additional diligence materials may be available for enterprise conversations where appropriate. Those materials, if shared, do not replace a negotiated contract or separate enterprise security review process.