← Back to home

Security

Last updated: March 30, 2026

Security is a shared responsibility. This page describes the safeguards AimpleAI has in place and the steps we ask you to take to keep your workspace safe.

What We Do

Encryption in Transit

All communication between your browser and AimpleAI is encrypted using HTTPS (TLS 1.2 and higher). This applies to the marketing site, the application, and all API endpoints.

Authentication & Passwords

Passwords are never stored in plaintext. We use industry-standard hashing (bcrypt) before storage. We encourage you to use a strong, unique password and to enable any additional authentication options available in your account settings.

Role-Based Access Control

Organization admins can configure Members, Teams, and Roles & Permissions from Settings. Assign granular access so each person can only view or edit what they need.

Infrastructure Security

The platform is hosted on cloud infrastructure with network-level isolation, regular patching, and access controls restricted to authorized engineers on a need-to-know basis.

Security Settings in App

Your organization has a dedicated Security settings page. Use it to review active sessions, manage API access, and configure notifications for security-related events.

Incident Response

We have an internal incident response process to identify, contain, and remediate security events. In the event of a data breach affecting your account, we will notify you promptly and in accordance with applicable law.

Your Responsibilities

We secure the platform. You are responsible for how your team uses it. Here are the key steps we recommend:

  • 1Use a strong, unique password for your AimpleAI account.
  • 2Do not share your login credentials with others. Invite teammates directly through the Members settings.
  • 3Store API keys and integration secrets in your host environment, not in shared documents or chat tools.
  • 4Assign least-privilege roles to team members via Roles & Permissions settings.
  • 5Review active sessions regularly in Security settings and revoke any you do not recognize.
  • 6If you suspect unauthorized access, change your password immediately and contact security@aimpleai.com.

Reporting a Vulnerability

We appreciate responsible disclosure. If you discover a security vulnerability in AimpleAI, please report it to security@aimpleai.com with a description of the issue and steps to reproduce. We aim to acknowledge reports within 48 hours and will work to address confirmed vulnerabilities promptly.

Please do not publicly disclose a vulnerability before we have had a reasonable opportunity to address it.

A Note on Scope

This page reflects security measures that are verifiable within the product UI and our published policies. For regulated industries or enterprise procurement, please conduct your own due diligence and contact us for additional documentation. AimpleAI is a growing product and we continuously improve our security posture.