Galleryou is committed to the security of our customers and their data
We use strong, industry-standard protocols (TLS 1.2+ and AES-256) to keep your data safe and confidential, at rest and in transit. All API communications are encrypted, and sensitive data is protected using secure encryption methods.
We use Better Auth with secure session management. Passwords are hashed and never stored in plain text. Secure cookies are used in production, and sessions are protected with proper expiration and update policies.
All photos and data are stored securely using AWS S3 with proper access controls. Database connections use encrypted connections, and sensitive information is protected at the database level.
Event photos are protected by QR code access. Only guests with the event QR code can access and share photos. Event owners have full control over their events and can manage access as needed.
We have procedures in place to detect, respond to, and recover from security incidents. Our team is trained to handle issues promptly and communicate transparently when needed.
Our infrastructure is designed for reliability. We use managed services and monitoring to minimize downtime and ensure your events run smoothly.
We regularly monitor our network and production infrastructure to identify vulnerabilities. Dependencies are kept up to date, and security patches are applied promptly.
Our infrastructure provides regular backups and recovery procedures. Your event data is protected and recoverable.
Cross-Origin Resource Sharing (CORS) is properly configured to allow only trusted origins, preventing unauthorized access to your API.
We leverage AWS services including S3 and Rekognition. All AWS resources follow security best practices with proper IAM roles and access controls.
Get in touch with our security team to disclose any security vulnerabilities or concerns.
[email protected]Join with other event hosts using Galleryou to share photos in real-time.