How We Protect Your Data

We take security seriously.

Zeni is built to help you stay motivated while paying off debt, and that only works if your data is protected. From day one, we’ve focused on building the app with modern security practices in place.

Authentication & Access

We use secure authentication powered by Supabase.

• Login and account access are handled through secure, industry-standard methods
• Password reset flows are protected
• Access to your data is restricted to your account only

Data Protection

• All data is transmitted over secure HTTPS connections
• Sensitive information is protected in transit
• Each user’s data is isolated from other users
• Row Level Security helps ensure users can only access their own data
• We follow the principle of least privilege when handling data
• Zeni does not connect directly to your bank accounts or access banking credentials
• We do not sell your personal data

Application Security

• Content Security Policy (CSP) to prevent malicious scripts
• Security headers to reduce common web vulnerabilities
• Protections against XSS and injection attacks
• Browser-level protections that help control what content can run on the site

These measures help make sure only trusted content runs in your browser.

Infrastructure

Zeni is built on trusted infrastructure providers used by modern SaaS applications.

• Frontend hosted on Vercel
• Backend and database managed by Supabase

Ongoing Improvements

Security isn’t a one-time setup. We continuously review and improve our security practices as the product evolves.

Report a Security Issue

If you believe you’ve found a security issue, please reach out:

support@zenidebtfree.com