How we protect your money and data
Demogenda pays real dollars for real-world missions, so trust is the whole product. Here is a plain-language look at how we keep your account, your submissions, and your payouts safe.
Encryption in transit & at rest
Your data is encrypted in transit with TLS and encrypted at rest in our databases and file storage. Payout credentials are tokenized by our payment processor, not stored in the clear.
Where your data lives
We run on established cloud infrastructure and work with a small set of vetted sub-processors for hosting, payments, and analytics — each bound by contract to protect your data.
Access controls
Access to production data is limited to the people who need it, protected by strong authentication and least-privilege permissions, and access is logged.
Fraud & abuse monitoring
Because we move real dollars, we actively monitor for fake submissions, duplicate accounts, and payout fraud — protecting both your earnings and the integrity of the platform.
Your data, your control
You can request a copy of your data or delete your account from within the app. We honor access, export, and deletion rights subject to legal retention limits.
Incident response
We maintain a plan to detect, contain, and investigate security incidents, and we will notify affected users and regulators where the law requires.
Compliance
We are building toward recognized industry standards as targets — including SOC 2 for security operations and PCI-DSS alignment for payment handling via our processor. These are goals we are working toward, not certifications we currently hold. [TBD — confirm]: update as audits are completed.
Report a vulnerability
Found a security issue? We want to hear from you. Email our security team at security@demogenda… ([TBD — confirm]: confirm address) with the details and steps to reproduce. We investigate every report and will not pursue good-faith researchers who follow responsible disclosure.
Or reach us through our contact page