Trust

Security

Your deal terms, commission rates, and contracts are sensitive. Here's exactly how we protect them.

Encryption

  • All data in transit is encrypted with TLS 1.2+. We enforce HTTPS across every endpoint.
  • All data at rest is encrypted using AES-256, including database records and uploaded files.
  • Contract files and deal attachments are stored in private object storage — never in a public bucket. Access requires a signed, time-limited URL that expires after a short window.

Access control

  • Authentication is handled via magic links (single-use, 10-minute expiry) and Google OAuth. We do not store passwords.
  • Sessions are scoped with JWT tokens signed using a secret that rotates on a schedule.
  • On Agency plan, workspace members can only access data within their assigned workspace. Owners control who is invited and can revoke access at any time.
  • Antymo staff do not access your deal data. The only exception is when you explicitly request it for a support issue, and only with your permission.

Infrastructure

  • Antymo runs on infrastructure provided by reputable cloud providers with SOC 2 Type II compliance.
  • We apply security patches and dependency updates promptly. Critical vulnerabilities are addressed within 24 hours of disclosure.
  • Database backups run daily with point-in-time recovery. Backups are encrypted and stored in a separate region.

Data handling

  • Your deal data is never used to train machine-learning models — ours or any third party's.
  • We do not sell your data. We do not share it with advertisers.
  • Third-party services we use (payment processing, transactional email, cloud hosting) are bound by data processing agreements and are not given access to your content data.
  • You can export all your data at any time via the app. You can request deletion of your account and all associated data at any time.

Responsible disclosure

If you discover a security vulnerability in Antymo, please report it to security@antymo.com before disclosing it publicly. We will acknowledge your report within 48 hours and aim to resolve confirmed vulnerabilities within 14 days. We appreciate responsible disclosure and will credit researchers who help us improve.

Questions about security? security@antymo.com

© 2026 Antymo. All rights reserved.