KkeepsafeBack to home

Security

Last updated: April 2026

Your estate planning data is some of the most sensitive information you own. Here's how Keepsafe protects it.

Encryption everywhere

All data is encrypted in transit using TLS 1.3. Data at rest in our database and document storage is encrypted using AES-256. Your vault documents are stored in an isolated private bucket — not accessible via public URL.

Row-level security

Our database enforces Row Level Security (RLS) policies so that each user can only read and write their own data. Even a compromised application query cannot access another user's records.

Infrastructure

Keepsafe runs on Supabase (hosted on AWS ap-southeast-1, Singapore) and Vercel. Both providers maintain SOC 2 Type II compliance. We do not operate our own servers.

Access controls

Production database access is restricted to authorised personnel only. We do not have access to your passwords — authentication is handled via hashed credentials. Supabase Auth tokens are short-lived and rotated automatically.

Responsible disclosure

If you discover a security vulnerability in Keepsafe, please report it responsibly by emailing security@keepsafe.sg. Please do not disclose the issue publicly until we have had a reasonable opportunity to investigate and address it. We aim to respond to all security reports within 48 hours.

What we recommend for you

  • Use a strong, unique password for your Keepsafe account.
  • Do not share your login credentials with anyone.
  • Log out when using a shared or public device.
  • Contact us immediately at security@keepsafe.sg if you suspect unauthorised access to your account.