Your Data, Protected
Security is not an afterthought at ZenPM. From encryption to access controls, we build protection into every layer of the platform.
Encryption in Transit
All data transmitted between your browser and ZenPM is encrypted using TLS 1.2+ (HTTPS). Every API call, file upload, and page load is secured end-to-end.
Secure Data Storage
Your project data is stored in managed MySQL databases with automated backups. Sensitive fields such as passwords are hashed using industry-standard algorithms. Payment data is handled entirely by Stripe and never touches our servers.
Access Controls
ZenPM enforces multi-tenant isolation so your data is never visible to other organizations. Role-based permissions let you control who can view, edit, or manage projects and contacts within your team.
Authentication
User sessions are managed with signed JWT tokens that expire automatically. Passwords are securely hashed and never stored in plain text. Magic links for client portals use single-use UUID tokens with limited scope.
Infrastructure
ZenPM is hosted on dedicated infrastructure with SSH-only deployment. There is no public FTP access. Server access is restricted to key-based authentication, and deployments are automated through secure CI pipelines.
Vulnerability Reporting
We take security issues seriously. If you discover a vulnerability, please report it responsibly by emailing hello@zenpm.work. We will acknowledge receipt within 48 hours and work to resolve confirmed issues promptly.
Our Commitment
We continuously monitor and improve our security practices. Our team stays up to date with the latest threats and best practices to ensure your data remains safe. If you have security questions or concerns, reach out to us at hello@zenpm.work.
Ready to Get Started?
Try ZenPM free and experience secure, AI-powered project management.