RHM DigitalRHM Digital← Back to home

Legal

Security Overview

Last updated: July 2026

This page summarizes the technical and organizational measures RHM Digital uses to protect customer data. It is not an exhaustive technical audit and does not constitute a certification. We do not claim compliance with a formal security standard (such as SOC 2 or ISO 27001) unless and until we hold that certification.

1. Encryption

  • All traffic between your browser and RHM Digital is encrypted using TLS/HTTPS.
  • Passwords are never stored in plain text and are managed by Clerk, our authentication provider.
  • Data at rest in our primary database is encrypted by our hosting provider.

2. Access control

  • Access to production systems and customer data is limited to team members who need it to operate the service.
  • Administrative actions inside the platform are logged for audit purposes.
  • Authentication into RHM Digital itself is handled by Clerk, supporting strong password policies and, where enabled, social login.

3. Application security

  • Input validation is enforced on both the client and the server for every request that changes data.
  • Dependencies are monitored for known vulnerabilities and updated on an ongoing basis.
  • Rate limiting is applied to public API endpoints to reduce the risk of abuse.

4. Data hosting and vendors

Our primary database and application infrastructure are hosted with providers that maintain their own independent security programs. See our Subprocessors page for the full list of vendors that process data on our behalf, and our Data Processing page for what each vendor receives.

5. Incident response

If we become aware of a security incident that affects your personal data, we will notify affected customers without undue delay and, where legally required, notify the relevant supervisory authority within the timeframe required by the GDPR.

6. Reporting a vulnerability

If you believe you have found a security vulnerability in RHM Digital, please report it responsibly through our Vulnerability Disclosure Policy.

7. Contact

Security questions can be sent to info@rhmdigital.com.

Related documents

Vulnerability Disclosure Policy
How to responsibly report a vulnerability.
© 2026 RHM Digital
Legal CenterPrivacyTermsSecurityDPAAI TransparencyResponsible AIData RetentionService LevelCookie PolicyCopyrightContact