1. Overview

At Farm to Bloom, we are committed to maintaining the highest standards of security for our users' data and communications. This Security Policy outlines our security practices and measures.

2. Data Protection

2.1 Encryption

• All data in transit is encrypted using TLS 1.3
• Data at rest is encrypted using industry-standard algorithms
• End-to-end encryption for messaging services
• Secure key management and rotation

2.2 Access Control

• Multi-factor authentication for sensitive operations
• Role-based access control (RBAC)
• Regular access reviews and audits
• Strong password requirements and policies

3. Messaging Security

Our messaging system implements several security measures:

• End-to-end encryption for all messages
• Secure message delivery and storage
• Message integrity verification
• Protection against message tampering
• Secure message deletion and retention policies

4. Infrastructure Security

• Regular security updates and patches
• DDoS protection and mitigation
• Firewall and intrusion detection systems
• Secure server configurations
• Regular vulnerability assessments

5. Incident Response

We maintain a comprehensive incident response plan that includes:

• Rapid incident detection and response
• Regular security incident drills
• Clear communication protocols
• Post-incident analysis and improvement

6. User Security Responsibilities

To maintain security, users should:

• Use strong, unique passwords
• Enable two-factor authentication when available
• Keep their devices and browsers updated
• Report suspicious activities immediately
• Not share account credentials

7. Security Updates

We regularly update our security measures and will notify users of any significant changes that may affect their security or privacy.

8. Contact Us

For security-related concerns or to report security issues, please contact us at:

Security Email: patrick@zimny.dev

Emergency Contact: patrick@zimny.dev