Security Statement

1. Infrastructure and Network Security

• Encryption in transit using TLS for web and API traffic.
• Network segmentation and access controls for production systems.
• Regular patching and vulnerability management for supported components.

2. Application Security

• Role-based access control and permission-gated routes within workspaces.
• Password hashing and session management for authenticated users.
• CSRF protection on state-changing requests where applicable.
• Rate limiting on selected public endpoints.
• Immutable audit logging for administrative and security-relevant actions.

3. Data Protection

• Logical separation of customer workspaces in multi-tenant deployments.
• Controlled access to production data on a need-to-know basis.
• Backups and recovery procedures designed to support business continuity.

4. Incident Response

We maintain procedures to investigate and respond to security incidents. We will notify affected customers of confirmed breaches involving their data in accordance with our DPA and applicable law.

5. Customer Responsibilities

• Use strong passwords and protect API keys and share links.
• Configure least-privilege roles for users.
• Review public share settings, embeds, and data retention.
• Report suspected vulnerabilities to security@mauqe.com. Do not perform testing that could harm the Service or other customers without prior written authorization.

6. Compliance

Customers in regulated industries are responsible for determining whether the Service meets their compliance requirements. Enterprise customers may request additional security documentation where available.