Your data is safe with VoxBurst
We take security seriously. Here's an overview of the technical and operational measures we use to protect your account, your content, and your social media credentials.
Security practices
Encryption in transit
All traffic between your browser and VoxBurst is encrypted using TLS 1.2+. We redirect all HTTP requests to HTTPS and use HSTS headers to enforce secure connections.
Encryption at rest
Sensitive data — including OAuth tokens for your connected social accounts — is encrypted at rest using AES-256. Your social platform credentials are never stored in plaintext.
OAuth for platform connections
We never ask for your social media passwords. All platform connections use each platform's official OAuth flow. You authorize VoxBurst directly on the platform's own website and can revoke access at any time.
Role-based access control
Team members can only access what their role allows. Admins control who can publish, schedule, or view content. Revoking access is instant.
Audit logs
Every significant action in your workspace is logged: post creation, account connections, member invitations, and API key usage. Audit logs are available to workspace administrators.
Secure API key authentication
API keys grant programmatic access to your workspace. Keys can be scoped and revoked at any time from your workspace settings. Never expose API keys in client-side code.
Cloud infrastructure
VoxBurst is hosted on Amazon Web Services (AWS) in a managed infrastructure with automated backups, monitoring, and alerting. AWS maintains extensive physical and network security certifications.
Responsible disclosure
If you discover a security vulnerability, please report it via our contact page. We will respond within 48 hours and work to address confirmed issues promptly.
Compliance status
Found a vulnerability?
Please disclose responsibly via our contact page and we'll respond within 48 hours.