Security & Trust
Your safety and privacy are our top priorities. Learn about the comprehensive security measures we use to protect your conversations and personal information.
Security Overview
Multi-layered protection for your peace of mind
End-to-End Encryption
All video calls and messages are encrypted using industry-standard protocols.
Data Protection
Your personal information is protected with advanced security measures and access controls.
Privacy First
We never sell your data and give you complete control over your privacy settings.
Community Safety
Comprehensive moderation and reporting systems keep our community safe and supportive.
Encryption & Data Security
Video Call Security
- WebRTC peer-to-peer encryption
- DTLS-SRTP protocol for media encryption
- No video/audio recording or storage
- Secure TURN servers for NAT traversal
Data Encryption
- AES-256 encryption for data at rest
- TLS 1.3 for data in transit
- Encrypted database storage
- Secure key management system
Infrastructure Security
Cloud Security
- SOC 2 Type II compliant hosting
- ISO 27001 certified data centers
- 24/7 security monitoring
- Regular security audits and penetration testing
Access Controls
- Multi-factor authentication for admin access
- Role-based access control (RBAC)
- Principle of least privilege
- Regular access reviews and audits
Application Security
Input Validation
All user inputs are validated and sanitized to prevent injection attacks
CSRF Protection
Cross-site request forgery protection on all state-changing operations
Rate Limiting
API rate limiting to prevent abuse and ensure service availability
Security Headers
- • Content Security Policy (CSP)
- • HTTP Strict Transport Security (HSTS)
- • X-Frame-Options
- • X-Content-Type-Options
- • X-XSS-Protection
- • Referrer Policy
Privacy Controls & User Rights
What You Control
- Profile visibility and information sharing
- Who can contact you and send session requests
- Notification preferences and frequency
- Data retention and deletion preferences
Anonymity Options
- Use pseudonyms instead of real names
- Avatar images instead of photos
- Limited profile information sharing
- Anonymous conversation options
Your Data Rights
You have the right to access, correct, delete, or export your personal data at any time. Contact our support team or use your account settings to exercise these rights.
Community Safety & Moderation
Proactive Safety Measures
- AI-powered content moderation
- Real-time conversation monitoring for safety
- Automated detection of harmful behavior
- Community guidelines enforcement
Reporting & Response
- Easy-to-use reporting system
- 24/7 safety team response
- Immediate action on safety violations
- Support for affected users
Emergency Situations
If you encounter an emergency or immediate safety concern, contact local emergency services first. Then report the incident to our safety team for platform-related action.
Compliance & Certifications
We meet international security and privacy standards
GDPR Compliant
Full compliance with European data protection regulations
SOC 2 Type II
Audited security controls and operational effectiveness
ISO 27001
International standard for information security management
CCPA Ready
California Consumer Privacy Act compliance for US users
Security Best Practices for Users
Account Security
- Use a strong, unique password for your Harthio account
- Enable two-factor authentication when available
- Log out from shared or public devices
- Regularly review your account activity
Conversation Safety
- Don't share personal information like addresses or financial details
- Trust your instincts - end conversations that feel uncomfortable
- Report any inappropriate behavior immediately
- Use the platform's built-in communication tools
Security Contact
If you discover a security vulnerability or have security concerns, please contact our security team:
Responsible Disclosure
We appreciate security researchers who help us keep Harthio safe. Please report vulnerabilities responsibly and give us time to address issues before public disclosure.