
SECURITY & TRUST
Security
Last updated: June 23, 2026
Security is a core priority at Silaar LLC. This page provides an overview of the technical and organizational measures we use to protect the Silaar API platform and our customers' data. For the legal details, see our Privacy Policy and Data Processing Addendum.
Our Security Practices
Encryption in Transit
All data exchanged with the Service is protected with TLS (HTTPS) encryption.
Secure Authentication
Session management uses signed JWT tokens. Passwords are stored only as one-way hashes.
Rate Limiting
Per-key rate limiting and quota enforcement protect against abuse and ensure fair usage.
Monitoring & Logging
Request logs and anomaly detection help us identify suspicious activity and respond quickly.
PCI-DSS Payments
Card data is handled entirely by Stripe, a PCI-DSS Level 1 provider. We never store card numbers.
Least Privilege
Internal access follows least-privilege and role-based controls, reviewed periodically.
Data Minimization
We collect only the personal data necessary to provide and secure the Service, as described in our Privacy Policy. Account data is retained only while your account is active and is deleted or anonymized thereafter, subject to legal retention requirements.
Incident Response
We maintain processes to detect, investigate, and respond to security incidents. If a confirmed breach affects your data, we will notify affected customers without undue delay in accordance with our obligations under the GDPR and applicable law.
Responsible Disclosure
We welcome and appreciate responsible disclosure of potential vulnerabilities. If you believe you have found a security issue, please report it privately rather than publicly. We are committed to working with good-faith security researchers and will not pursue legal action against reports made in good faith.
Report a vulnerability:
Email: security@silaar.com
Please include a clear description of the issue and, if possible, steps to reproduce it. We aim to acknowledge reports within 48 hours.
Your Responsibility
Security is a shared effort. We ask customers to:
- Keep API keys and passwords confidential and rotate them if exposed;
- Use strong, unique passwords and enable any available account protections;
- Notify us promptly at security@silaar.com if you suspect unauthorized access.
Questions?
For security-related questions, contact security@silaar.com. For privacy questions, see our Privacy Policy.