Security

Security is a core part of Coator, not an afterthought. Debt portfolio data is sensitive by nature, and we treat it accordingly. A full security disclosure will be published prior to launch.

All data is encrypted in transit using TLS 1.2 or higher. Data at rest is encrypted using AES-256.

Access to the platform is protected by authentication and role-based permissions. We apply the principle of least privilege throughout the system.

All file uploads, transformations, and deliveries are logged with timestamps and user attribution. Logs are retained and protected against tampering.

If you discover a security vulnerability, please report it responsibly to linus.lindstrom@coator.se. We will respond promptly and work with you to resolve the issue.