Security
Your story deserves bank-level protection.
Our Security Mindset
We assume three things:
Your career story is sensitive.
Attackers are creative.
Security is never "done".
So we design DreamMatch Ai like a modern, cloud-native platform that has to earn your trust every day.
Technical Protections
We use industry-standard controls such as:
Encryption in transit
All connections use HTTPS/TLS.
Encryption at rest
Where supported by infrastructure.
Role-based access control
Internal systems follow least-privilege.
Segregated environments
For dev, staging, and production.
Logging and monitoring
For suspicious activity.
We regularly review our stack and vendors for security posture.
Organizational Protections
We back the tech with process:
Restricted access to production data and systems
Security and privacy awareness for team members
Strong authentication on internal tools
Vendor review for critical partners
We treat access to user data as an exception, not a default.
Your Part in Security
We share this responsibility with you. You can help by:
Using a strong, unique password
Enabling extra security features we provide (like 2FA when available)
Being cautious on shared or public devices
Letting us know quickly if you suspect unauthorized access
Incident Response
If something goes wrong, we will:
Investigate promptly
Contain and mitigate impact
Notify affected users and/or regulators where required by law
Learn from the incident and strengthen controls
To report a security issue or vulnerability:
We appreciate responsible disclosure and will treat your report with urgency.