Security Practices
We implement administrative, technical, and physical safeguards designed to protect personal and household information from unauthorized access, loss, or alteration.
1. Security Safeguards
- Data Encryption: We encrypt data in transit using TLS 1.2 or 1.3, and at rest using standard cloud encryption mechanisms.
- Access Control: Row Level Security (RLS) is enforced at the database layer to strictly isolate data. Members of one Household can never access data belonging to another.
- Authentication Security: Secure authentication tokens are stored in platform-protected storage (iOS Keychain / Android Keystore) on your device.
- Serverless Protection: API and AI coordination runs inside secure serverless Edge Functions where credentials remain server-side and are never exposed to the client app.
2. Your Role in Security
As a collaborative family workspace, security depends on the actions of all members:
- Use Strong Credentials: Secure your account with a strong, unique password.
- Device Security: Enable a secure screen lock (passcode, biometric) on any device running Homegenii.
- Invite Only Trusted Members: Only send Household invitations to individuals you trust, as they will have access to shared grocery lists, calendar events, and safety updates.
- Secure feed URLs: Keep private calendar subscription feeds (iCal URLs) confidential, as anyone with the link can view event details.
3. Incident Notification
We monitor for security anomalies. In the event of a verified data breach that threatens your personal information, we will notify affected users and regulatory authorities within the timeframes required by applicable laws.
If you suspect unauthorized access or find a security vulnerability, please contact us immediately at security@homegenii.app.