Security
Last updated: July 8, 2026
Data security is a priority. Here is a summary of the technical and organizational measures we implement.
EU hosting
The Service's infrastructure is hosted on servers located within the European Union.
Encryption
Communications with the app are encrypted via TLS. Secrets and sensitive information are encrypted at rest.
Authentication
The app supports two-factor authentication (2FA), API-key authorization, and OAuth 2.1 connectors for MCP integrations.
Tenant isolation
Each company's (tenant's) data is logically isolated via row-level security policies in the database.
Backups
Daily backups are performed, with restore procedures tested periodically.
Monitoring
Access and relevant security events are logged and monitored to detect suspicious activity.
Responsible disclosure
If you have identified a security vulnerability, please contact us confidentially at info@facturifirma.ro before any public disclosure. Thank you for reporting responsibly.