Security

Customer data is protected with encryption in transit and at rest where supported by the underlying infrastructure.

Access to production systems is limited to authorized personnel and reviewed around operational need.

The platform supports authenticated dashboards, client portal verification flows, audit activity, role-aware workspace access, and security-focused session handling.

Customers should enforce strong passwords, limit administrator access, and remove users when they no longer need workspace access.

We use security headers, rate limiting, structured audit logs, upload validation, and monitoring to reduce common application risks.

Sensitive workflows are designed for human review before forms, drafts, or client-facing outputs are used outside the platform.

If we discover a security incident affecting customer data, we will investigate, contain the issue, and notify affected customers as required by applicable law or contract.

Security reports can be sent to hello@immiagent.ai with reproduction steps, affected URLs, and supporting evidence.

Security also depends on customer practices, including access reviews, device security, secure email handling, client consent, and careful review of generated documents.

For enterprise security reviews, contact hello@immiagent.ai.