Security Policy

Last updated: June 2026

We take the security of your data seriously and apply industry-standard practices to protect it.

Authentication

Accounts are protected by email verification and secure session cookies. Passwords are managed through Firebase Authentication and never stored in plain text.

Audit logging

Key events — logins, account creation, document uploads and deletions, and journal edits and deletions — are recorded in an audit trail for security review.

Reporting a vulnerability

If you discover a security issue, please report it responsibly to support@biosystant.com. We will investigate and respond promptly.