1. Infrastructure Security
Acquirely is hosted on modern cloud infrastructure using:
Cloudflare
CDN, WAF, DDoS protection
Vercel
Application delivery
Supabase / Neon
Database layer
Cloudflare R2
Asset storage
All systems enforce security best practices and encryption.
2. Data Encryption
At rest: AES-256 or platform-level encryption Passwords: Hashed using bcrypt or Argon2 3. Access Control
- Role-based access
- Principle of least privilege
- Access logging and monitoring
- Multi-factor authentication for internal systems
- Strict separation between production and development environments
4. Network & Application Security
Acquirely uses:
- Web Application Firewall (WAF)
- DDoS mitigation
- Security header enforcement
- CSRF and XSS protections
- Dependency scanning
5. SDK Security
The Acquirely SDK includes:
- Request signing
- Code obfuscation
- Anti-tampering measures
- Content Security Policy (CSP) adherence
- Runtime validation
- License enforcement checks
Unauthorized analysis or replication is prohibited.
6. Vulnerability Management
- Regular patching
- Dependency audits
- Automated monitoring for exposures
- Incident response plan
7. Data Breaches
In the event of a data breach, Acquirely will:
- Notify affected customers without undue delay
- Provide details and mitigation guidance
- Fulfill all CPRA/GDPR obligations