Security
Last updated July 2026
Security is foundational to how we build Cynapse. This overview describes the practices we use to protect your data and the customer and patient feedback you collect.
Encryption
Data is encrypted in transit using TLS and encrypted at rest by our infrastructure providers. Credentials are hashed using industry-standard algorithms and are never stored or emailed in plaintext.
Access controls
Access to production systems is restricted on a least-privilege basis. The platform enforces role-based access — super admin, admin, and staff — so users only see the data appropriate to their role and organization.
Infrastructure
Cynapse runs on reputable cloud infrastructure with tenant isolation between organizations. Backups and redundancy are handled by our providers to support availability and recovery.
Monitoring and response
We log security-relevant events and monitor for anomalies. In the event of an incident affecting your data, we will investigate promptly and notify affected customers in line with our obligations.
Data privacy
We collect only what we need, honor consent captured at the point of feedback, and give organizations control over their data. See our privacy policy for details.
Responsible disclosure
If you believe you have found a security vulnerability, we want to hear from you. Please report it through our contact page and give us a reasonable opportunity to address it before public disclosure.