Security at Sunnybox
Your Expertise, Our Commitment
At Sunnybox, we’re dedicated to maintaining the highest standards of security. As we grow and innovate, we recognize the invaluable role of the security research community in safeguarding the digital landscape.
Compliance & Certifications
GDPR Compliant
We fully comply with the General Data Protection Regulation (GDPR). Our servers are located in Frankfurt, Germany, and we implement strict data protection measures including:
- Encryption of all sensitive data
- Minimal data retention policies
- User rights management (access, deletion, portability)
- Regular security audits
CASA Certified
Sunnybox is CASA (Cloud Application Security Assessment) certified, having successfully completed Google’s rigorous security assessment. This certification enables our Gmail integration and demonstrates our commitment to:
- Secure authentication and authorization practices
- Protection of user data
- Regular security updates and vulnerability management
- Compliance with industry best practices
A Collaborative Effort
If you’re a security researcher and have discovered a potential vulnerability in our system, we want to hear from you. Your insights are not just welcome, they’re essential for us to ensure the safety and reliability of our service.
How to Report
Please send your findings to [email protected]. Include a detailed description of the potential vulnerability and, if possible, steps to reproduce it. We take every report seriously and will investigate promptly.
Our Promise
While Sunnybox is currently in a bootstrapping phase, we are committed to responding to and addressing security concerns swiftly. Your contribution will be acknowledged, and we’ll ensure that any identified issues are resolved as quickly as possible.
Together, Making a Difference
Your expertise can help us create a safer, more robust platform. Let’s work together to protect and enhance Sunnybox for everyone.