Security

1. Architecture & Isolation

SemaSuite is built on a modern, distributed architecture designed for maximum security. We utilize an advanced database strategy where each tenant's data is treated as a distinct entity. This ensures that even at the database level, cross-tenant access is strictly prohibited.

2. Encryption

At Rest: All sensitive data, including your API keys for third-party providers (SES, SendGrid), matches encryption standards (AES-256).
In Transit: All data moving between your browser, our servers, and your providers is encrypted via TLS 1.3.

3. Infrastructure

Our application logic runs on a serverless edge network, reducing the attack surface area compared to traditional server architectures. We have no physical servers to manage or patch; our infrastructure provider handles physical security and OS-level compliance.

4. Access Control

For Agency accounts, we provide granular role-based access control (RBAC). You control exactly which team members can see or edit specific client hubs.

5. Responsible Disclosure

If you believe you have found a security vulnerability in SemaSuite, please contact us immediately at security@semasuite.com. We value the researcher community and will work with you to resolve the issue promptly.