Security
KYBN applies practical security controls for handling HR reporting data in transit and at rest.
Core Controls
- HTTPS transport for web and API traffic in production environments.
- Role-based access controls for plan and admin capabilities.
- Operational logging for report generation, data checks, and support events, with PII masking in logs.
- Configuration and secrets managed outside source control.
Secure Operations
- Least-privilege access for admin workflows.
- Retention controls and deletion workflows for customer data.
- Incident handling through a ticketed support process.
For more information about data handling and deletion requests, see Privacy and Data Deletion .