Boosto Logo
Security

Trust & Security

How we approach protecting your account, data in transit, and our platform—aligned with Boosto’s privacy commitments.

Overview

Security is integral to Boosto. We combine technical safeguards, operational practices, and vendor diligence to reduce risk. No service can guarantee zero risk; this page summarizes our approach and how you can help keep your account safe.

Encryption and transport

We use industry-standard TLS (HTTPS) to encrypt data between your browser and our services. Credentials and sensitive configuration should always be transmitted over secure connections. Where we rely on third-party providers (e.g., hosting, email), we select vendors that support modern encryption and security practices.

Access control

We work to ensure that:

  • Access to production systems and customer data is limited to authorized personnel with a business need
  • Authentication and session handling follow current best practices
  • Administrative actions are logged and reviewed where appropriate

Infrastructure and availability

Our services run on reputable cloud infrastructure with redundancy and monitoring designed to support uptime and rapid response to operational issues. Maintenance or third-party outages may occasionally affect availability; we communicate material incidents when appropriate.

Subprocessors and vendors

We use carefully selected subprocessors (for example, hosting, analytics, or email delivery) under agreements that require appropriate security and confidentiality. A current list may be provided upon request for enterprise customers or as described in your order form.

Incidents and notifications

If we become aware of a breach that affects personal data we process on your behalf, we will investigate, remediate, and notify you and regulators as required by applicable law. For general product issues, contact support; for suspected vulnerabilities, use the reporting channel below.

Your responsibilities

You can improve security by:

  • Using strong, unique passwords and enabling MFA where available
  • Not sharing account credentials across individuals or teams unnecessarily
  • Reviewing AI-generated content before publication, especially for regulated industries
  • Keeping integrations and API keys confidential and rotating them if exposed

Report a vulnerability

If you believe you have found a security vulnerability in Boosto, please email contact@boosto.ai with a clear description and steps to reproduce. Do not perform disruptive testing (e.g., denial-of-service) or access data that is not yours. We appreciate responsible disclosure and will work with you to address valid issues.

Contact

Security or compliance questions? Use the channels below.

Back to homeContact support