my.proposal
Security & compliance·4 min read

How we protect your data

Encryption at rest and in transit, SOC 2-aligned infrastructure, and zero data selling.

MyProposal is built on security-first infrastructure. Here's exactly how your data and your clients' data is protected.

Encryption

  • All data is encrypted at rest using AES-256.
  • All data in transit uses TLS 1.3.
  • Database backups are encrypted and retained for 7 days.

Infrastructure

MyProposal runs on Supabase (Postgres) and Vercel. Both providers maintain SOC 2 Type II certifications. Data is stored in the EU (Frankfurt) by default.

Access controls

Row-level security on the database means your data is only accessible with your credentials. Even MyProposal engineers cannot read your proposal content without explicit permission (e.g. a support request).

Note

We never sell your data, your clients' data, or any behavioural data to third parties. Our business model is subscriptions.

Penetration testing

We conduct penetration testing quarterly. If you find a security vulnerability, please report it to security@myproposal.app.

More in Security & compliance
GDPR compliance
MyProposal is GDPR-compliant. Here's how we handle data subject requests and data processing.
3 min read
Two-factor authentication
Enable 2FA on your account to add a second layer of protection.
2 min read
Ready to win more deals?

Create, brand, send and e-sign proposals that close 40% faster.

Start free