KrysmeKrysmeHome

Security & compliance

Platform security

Your data security is a top priority. We apply defence in depth, systematic encryption and strict access controls.

TLS 1.3

Transit encryption

AES-256

At-rest encryption

bcrypt-12

Password hashing

Audit logs

Immutable traces

72h

Regulatory notice window

EU only

European data residency

01

Our security commitment

Security is built into every architecture decision and every deployment.

We apply least privilege and multiple protection layers around access, data and workflows.

02

Infrastructure & hosting

The application runs on European infrastructure with strict environment separation.

Databases, backups and logs are monitored and protected with role-based access.

03

Data encryption

TLS 1.3 is enforced in transit and sensitive secrets are encrypted at rest.

Passwords are hashed and payment data is handled exclusively by Stripe.

04

Authentication & access

Sessions are protected through HttpOnly cookies and server-side checks.

Roles, human approvals and audit logs restrict access to sensitive actions.

05

Incident handling

In case of an incident, we isolate, assess and notify according to applicable requirements.

A post-mortem and corrective measures are produced for every critical incident.

06

Security contact

For any security disclosure or data protection question, contact contact@krysme.com.

Last updated: 2026 · Krysme SA · Lausanne, Suisse