DomainHQ

Security Practices

Last updated: February 2026

DomainHQ is committed to protecting the confidentiality, integrity, and availability of our systems and the data we process. This page summarizes our security practices. Specific contractual commitments may be set out in separate agreements.

Data protection

We treat client and contact data as confidential. Access is limited to personnel who need it to provide and support our services. Data is stored in controlled environments with access controls, encryption in transit (TLS), and encryption at rest where applicable.

Access and authentication

Access to internal systems and client-facing platforms is protected by strong authentication. We support or can support single sign-on (SSO) and multi-factor authentication (MFA) for client access where agreed. Credentials and secrets are managed securely and not stored in plain text.

Monitoring and incident response

We monitor our infrastructure and applications for security events. We have procedures to detect, assess, and respond to incidents and to notify affected parties where required by law or contract.

Vendor and supply chain

We use third-party providers for hosting, communication, and other operational needs. We select and manage vendors with security in mind and require appropriate commitments to confidentiality and security where relevant.

Secure development

We follow secure development practices for our platform and tools, including attention to secure configuration, dependency management, and reducing exposure of sensitive data.

Compliance and audits

We align our practices with industry standards and work toward or maintain certifications as we scale. For enterprise clients, we can provide additional security and compliance information under NDA or as part of an agreement.

Your role

Keeping your account credentials secure, using strong passwords and MFA where available, and reporting any suspected security issue to us promptly helps protect your data and our platform.

Contact

Security-related questions or to report a concern: hi@domainhq.io. We take reports seriously and will respond as appropriate.