Built to be trusted with what matters.

Last updated: June 2026

Trusted infrastructure

Sanctom runs on established, enterprise-grade cloud providers — including Amazon Web Services and managed database infrastructure built on PostgreSQL. We don't run our own data centers; we build on platforms with mature, independently audited security programs.

Encryption

Data is encrypted in transit using TLS, and encrypted at rest by our infrastructure providers. The Sanctom website and all application traffic are served exclusively over HTTPS.

Access control

• Access to production systems is limited to the people and services that require it, and is governed by role-based permissions.
• Application data is isolated per account, so one customer's information is not accessible to another.
• Secrets and API keys are stored in managed secret stores, never in source code.
• Actions taken inside Sanctom are recorded so that there is an accountable trail.

Privacy by design

We collect only what we need to provide the service, and we're explicit about it in our Privacy Policy. Information you choose to keep private stays private — particularly in products like Sanctom Relations, Sanctom Life, and Sanctom Legacy, which are built around the principle that you decide what to remember, what to share, and what stays yours alone.

Payments

Sanctom does not store full payment-card numbers. Billing is handled by established third-party payment processors that are responsible for cardholder data, so sensitive payment details never sit on Sanctom's own systems.

Responsible disclosure

If you believe you've found a security vulnerability, we want to hear from you. Please email security@sanctom.io with the details and steps to reproduce. We'll acknowledge your report and work with you in good faith to resolve it. Please give us reasonable time to address an issue before disclosing it publicly.