What we have today, what's in progress, what's planned.

TLS 1.2+ on all endpoints. AES-256 at rest on managed Postgres and object storage.

Primary region eu-central. Sub-processors documented with region and data category.

RLS enabled on every tenant-scoped table. Service-role access limited to verified server functions.

Sessions stored client-side, validated server-side on every privileged request.

Every governance decision is captured as an event and exportable to CSV for steering committees.

Customers delete documents, findings or extracted concepts from the UI. Hard delete — not soft delete.

Downloadable template (v1.0). Counter-signed copy issued by legal within 5 business days for pilots.

Available for pilot tenants. Concrete IdP wiring playbook (Okta, Entra ID, Google Workspace) published.

First external pen-test scheduled before first production tenant go-live. Summary report shared under NDA.

Controls mapped to ISO 27001 Annex A. Formal certification not yet pursued.

Not yet initiated. Tracked as a post-pilot milestone; will be confirmed publicly when an auditor is engaged.

security@wikisure.org. Triage within 2 business days. Coordinated disclosure preferred.