Security

Built for sensitive marketing data and controlled execution.

BrandCrank holds OAuth tokens for paid-media accounts, content for live websites, and 14 days of post-deploy verification data per change. We treat that responsibility seriously.

Pillars

Four security guarantees we build everything around.

Encryption everywhere

Provider OAuth tokens and CMS credentials are encrypted at rest with AES-256-GCM using the application KMS secret. TLS protects data in transit.

Workspace-scoped access

Integration lookup and workspace APIs are scoped by workspace identifiers. The product is designed so one workspace cannot intentionally access another workspace's integrations or proposals.

Full audit log

Connection events, token refresh outcomes, proposal actions, CMS apply attempts, and related workspace changes write to the audit log. Read-level credential auditing is planned before enterprise compliance claims.

Independent review on changes

When the review gate is enabled, a separate Gemini review pass checks high-impact proposals for brand safety, policy risk, evidence quality, and measurement gaps before approval.

Operating practices

Operational controls for a serious marketing stack.

Authentication: NextAuth (Auth.js v5) with bcrypt password hashing. Optional SSO on Enterprise. Session tokens rotate on every login.
Secrets management: Customer credentials are encrypted with the application KMS secret. Application secrets live in environment variables, not source control.
Network: All traffic over TLS 1.3. Vercel edge with DDoS protection. Rate limiting on every public endpoint.
Data retention: We retain audit data and proposals for the life of your account. On cancellation we keep a 30-day window for export, then delete on request or automatically after 90 days.
Backups: Postgres point-in-time recovery with 7-day window. Daily snapshots retained for 30 days. Tested restoration quarterly.
Monitoring: Sentry for application errors and Pino for structured logs. Failed apply executions and token refresh issues are recorded for operational follow-up.

Compliance

Where we are today and what's next.

GDPR-aligned data practicesPlanned

CCPA / CPRA request supportPlanned

SOC 2 Type IIPlanned

Data Processing AgreementDrafting

Vendor security questionnaireDrafting

Found something?

Responsible disclosure.

If you discover a security issue please email security@brandcrank.com with reproduction steps. We'll acknowledge within 24 hours, fix urgent issues within 7 days, and credit you in the changelog if you'd like. We don't pursue researchers acting in good faith.

Need more detail?

Get our security questionnaire and DPA.

Request the docs →Email security@brandcrank.com