Security
Last updated: February 2026
Authentication
User authentication is handled through Supabase Auth with JWT-based session management. All authentication flows use industry-standard protocols with secure token handling.
Data Isolation
Each organization's data is fully isolated at the database level. Users can only access data belonging to their organization, enforced through row-level security policies.
Encryption
All data in transit is encrypted via HTTPS/TLS. Data at rest is encrypted through Supabase's underlying infrastructure. Uploaded files and generated outputs are stored securely within your organization's environment.
Access Controls
The platform implements role-based access control. Organization administrators manage user access and permissions. Administrative functions are restricted to authorized roles only.
Security Concerns
If you discover a security vulnerability or have concerns about the platform's security, contact us at support@meridian.app.