SysOS Help Center
Security

Security and Encryption Overview

This article summarizes how SysOS protects your data in transit and at rest. It is a general overview of our security posture.

Encryption in transit

All traffic to and from SysOS is encrypted with modern TLS, so data moving between your browser and our servers is protected.

Encryption at rest

Data stored in our databases and backups is encrypted at rest by our cloud infrastructure.

Tenant isolation

Each workspace is logically isolated. A request is always scoped to the tenant it belongs to, so one customer cannot see another customer's data.

Secrets management

  • Sensitive credentials are stored as managed secrets, never in plain configuration.
  • Secrets are write-only and never exposed back in the interface.

Backups

We take regular encrypted backups to support disaster recovery, and they age out on a schedule.

Defense in depth

  • Edge protection against common web attacks.
  • Rate limiting on sensitive endpoints.
  • Security headers on every response.

Shared responsibility

We secure the platform; you secure your accounts by using strong passwords, enabling 2FA, and assigning least-privilege roles.