Your data is safe with us
Security is built into everything we do.
Compliance & Certifications
Our infrastructure providers maintain industry-leading security certifications
Hosting Infrastructure
- SOC 2 Type II certified
- ISO 27001:2022 certified
- PCI DSS v4.0 compliant
- EU-U.S. Data Privacy Framework certified
Database Infrastructure
- SOC 2 Type II certified
- HIPAA compliant (BAA available)
- Data encryption at rest and in transit
- Regular third-party security audits
Data stored in secure, geographically distributed data centers with enterprise-grade physical security
Secure Connections
Encryption
- •All data encrypted in transit (HTTPS/TLS)
- •Passwords securely hashed (never stored in plain text)
- •Secure session management
Trusted Hosting
Infrastructure
- •Enterprise-grade cloud infrastructure
- •Secure database with industry-standard encryption
- •Regular security updates
- •Automated backups
Your Data, Your Control
Access Control
- •Only you can access your meeting notes
- •Secure authentication and authorization
- •Session timeouts for security
- •Password reset via secure email link
We Don't Read Your Notes
Privacy First
- •Your meeting notes are private
- •We don't sell data. Ever.
- •No third-party advertising
- •Minimal data collection
We're Monitoring
Incident Response
- •Regular security monitoring
- •Quick response to issues
- •We'll notify you of any security incidents
- •Transparent communication
Industry Standards
Best Practices
- •HTTPS everywhere
- •Secure password hashing
- •Regular security updates
- •Following industry security guidelines
Found a Security Issue?
We take security seriously. If you've discovered a vulnerability, please report it to: security@helmly.io
Please:
- Give us reasonable time to fix it before public disclosure
- Don't access other users' data
- Don't perform destructive testing
We'll:
- Respond within 48 hours
- Work with you to understand the issue
- Fix critical issues quickly
- Credit you (if you'd like)
Keep Your Account Secure
- 1Use a strong, unique password
- 2Don't share your password
- 3Log out on shared computers
- 4Report suspicious activity: support@helmly.io