hello@zarqnix.com
Visakhapatnam, Andhra Pradesh · India
Security
We are building products in a category — trust — where security is the entire value proposition. There is no cutting corners. This page describes how we think about it.
Every credential we handle is signed with Ed25519 and anchored to a Merkle transparency log. Tamper-evidence is built in at the protocol layer, not bolted on.
Production access is gated, audited, and time-bound. No engineer holds standing credentials to customer data. Every access decision is logged and reviewable.
All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Sensitive fields are additionally encrypted at the application layer with per-tenant keys.
We build on W3C Verifiable Credentials, OpenID Connect, and other open specs. Auditable cryptography beats clever cryptography every time.
We collect the minimum data necessary, retain it for the shortest time possible, and give users complete control over what is shared and with whom.
If you find a vulnerability, tell us at security@zarqnix.com. We aim to acknowledge within 24 hours and resolve critical issues within 7 days.
Where we stand today. We will update this page as audits complete.
Found something that looks wrong? Email . We treat security reports as a gift. We will acknowledge within 24 hours and credit you publicly (with your permission) once a fix is shipped.
