Magzera
Start free

Security

How we protect your data.

We treat the PDFs you upload like a payments processor treats cards — encrypted in transit, encrypted at rest, accessible only by you and the readers you share with.

Encryption in transit

All connections to magzera.com use TLS 1.3 with HSTS preload. Browser → CDN, browser → S3 presigned URLs, server → database — all encrypted.

Encryption at rest

PDFs and tile assets are stored on AWS-S3-compatible object storage with AES-256 server-side encryption. Database (Postgres) volumes are encrypted at the disk layer.

Access controls

Workspace isolation at the row level — every flipbook query is scoped by workspace ID. Production credentials live in restricted environment files; CI deploys use a scoped sudoers entry.

Audit trail

Every authenticated request is logged with user ID, timestamp, and route. Page-view analytics are anonymous — no IP storage, no cross-flipbook tracking, no third-party scripts.

Subprocessors

We use a minimal set of vendors. Each one has access to a strictly limited slice of the data:
  • Stripe — payment processing. They see card data; we never do. Customer email + plan tier are mirrored to Stripe's customer record.
  • AWS / EC2 / S3-compatible storage — compute and object storage. Encrypted at rest. SOC 2 Type II certified infrastructure.
  • Let's Encrypt — TLS certificate issuance. Public certificate transparency log only; no data flow.

Reporting a vulnerability

Found a bug that could compromise user data? Email security@magzera.com with steps to reproduce. We aim to respond within one business day and patch confirmed issues within 7 days for high severity.

Bug bounty is in pilot — qualifying reports earn $50–$2,000 depending on severity. Out of scope: rate-limit testing, denial-of-service, social engineering, physical attacks.

Compliance posture

Not currently SOC 2 / ISO 27001 certified — we're a small team and the audit costs aren't yet justified for our scale. Reach out if you need a DPA, a custom security questionnaire, or a list of our technical controls and we'll put it together same-week.

Data retention

Live flipbooks are stored until you delete them. On deletion, tiles and metadata are removed within 24 hours from all storage tiers (no soft-delete period).

Backups are encrypted, retained 14 days, and purged on schedule. Analytics events are retained 365 days, then aggregated and purged. Account deletion nukes everything within 7 days.