Trust & Safety

Security

Last updated: June 2026

Encryption in transit

TLS 1.2+ on all connections

Encryption at rest

AES-256 database encryption

Two-factor authentication

TOTP-based 2FA available for all accounts

Account isolation

Row-level security enforced per account

Infrastructure security

EconomyIntel is hosted on Cloudflare Workers with global edge delivery. Our database infrastructure runs on Supabase, a SOC 2 Type II certified platform. All infrastructure is managed by providers with enterprise-grade physical and logical security controls.

Account isolation

Every EconomyIntel account is isolated at the database layer using row-level security (RLS) policies enforced in PostgreSQL. No user can access data belonging to another account — this is enforced at the query level, not just the application layer.

Authentication

  • Email and password authentication with bcrypt hashing via Supabase Auth.
  • Time-based one-time password (TOTP) two-factor authentication is available and recommended for all accounts.
  • Session tokens are short-lived and rotated on activity.
  • Middleware enforces authentication and MFA assurance level on all protected routes — unauthenticated requests are redirected to the login page.

Encryption

All data transmitted between your browser and EconomyIntel is encrypted using TLS 1.2 or higher. Data stored in our database is encrypted at rest using AES-256.

AI processing

Economic data is processed by Anthropic (Claude) solely to generate regime assessments, implications, and weekly briefs. We use this API under a data processing agreement that prohibits use of your data for model training. AI processing occurs over encrypted connections.

Automation security

EconomyIntel's n8n automation workflows communicate with our database via service role credentials stored as encrypted environment variables. Workflow endpoints are not publicly accessible.

Vulnerability disclosure

If you discover a security vulnerability in EconomyIntel, please report it responsibly to security@economyintel.com. We will acknowledge your report within 48 hours and aim to resolve confirmed vulnerabilities within 30 days. We ask that you do not publicly disclose vulnerabilities before we have had the opportunity to address them.

Security updates

We monitor our dependencies for known vulnerabilities and apply security patches on a regular basis. Infrastructure security updates are applied by our hosting providers as part of their managed service commitments.

Contact

For security enquiries, contact security@economyintel.com. For general privacy questions, see our Privacy Policy.