Security
Last updated — 28 June 2026
Our commitment
Security is foundational to everything we build. We take the protection of our systems and our clients' data seriously and follow industry best practices across our infrastructure and development processes.
Infrastructure
- All traffic is encrypted in transit via TLS
- Data at rest is encrypted using AES-256
- Infrastructure is managed as code with reproducible NixOS deployments
- Systems are patched and updated regularly
Development practices
- Code is peer-reviewed before merging
- Dependencies are monitored for known vulnerabilities
- Automated testing runs on every change
- Access to production systems follows the principle of least privilege
Reporting a vulnerability
If you believe you have found a security vulnerability in any Geckr-operated service, we encourage responsible disclosure. Please email us at [email protected] with details of the issue. We will acknowledge your report within two business days and work with you to understand and address it.
Contact
For general security questions, reach out at [email protected].