Last updated: February 2025
RealtimeForm is hosted on Heroku's secure infrastructure with automatic security patches and updates. All data is stored in PostgreSQL databases with encryption at rest.
All data in transit is encrypted using TLS 1.2+. Sensitive data at rest is encrypted using industry-standard AES-256 encryption.
User passwords are hashed using bcrypt with appropriate cost factors. We support secure session management with automatic timeout.
Access to production systems is strictly limited. All access is logged and regularly audited.
Form data is processed using Anthropic's Claude AI. Data sent to AI services is used only for generating responses and is not stored by third parties.
If you discover a security vulnerability, please report it through our contact form. We take all reports seriously and will respond promptly.