Skip to main content
COMPANY · SECURITY

Security you can count on

Your member data is some of the most sensitive data your organization holds. Here’s how we protect it.

Compliance and data protection

  • GDPR compliant

    EU data protection. Data processing agreement available.

  • DPDP compliant

    India’s Digital Personal Data Protection Act.

  • 256-bit TLS encryption

    All data encrypted in transit.

Access and authentication

  • SSO / SAML

    Supported on Enterprise plans.

  • Role-based access control

    Granular permissions for every team member.

  • Audit logging

    Full activity log for Enterprise accounts.

  • Two-factor authentication

    Required for admin accounts, optional for members.

Infrastructure and reliability

  • Multi-tenant architecture

    Logical data separation between organizations.

  • Automated backups

    Daily, with 30-day retention.

  • Disaster recovery

    Documented and tested recovery procedures.

Your data is yours

When you use Hummz, your member data belongs to you — not us. We do not sell your data, use it for advertising, or share it with third parties without your explicit consent. If you cancel your account, you can export your full data at any time before closure. We provide 30-day data retention after cancellation.

Reporting a security issue

Found something? We want to know. We review all reports within 2 business days and follow responsible disclosure practices.

Or email us directly at security@hummz.com

Security documentation

For security-specific questions or to request our security documentation:

security@hummz.com