Security & Privacy
How Kaynos protects your data.
Kaynos stores coaching videos, timestamped notes, and the conversations between coaches and their students. We treat that data the way you'd expect — encrypted, isolated per account, and never shared. Below are the specifics for anyone doing due diligence.
Infrastructure
Your data is hosted on trusted, enterprise-grade providers with built-in protection.
- Application hosted on Netlify (global CDN, DDoS protection)
- Database on Neon (managed PostgreSQL with encryption at rest)
- Video storage on Backblaze B2 (S3-compatible, encrypted at rest)
Authentication
Your login is protected by multiple layers of security so only you can access your account.
- Passwords are hashed using bcrypt, a one-way encryption standard
- Your login session is secured with industry-standard encryption that prevents interception
- Rate-limited login endpoints to prevent brute force
- Token-based password reset via email
Data isolation
Your account is completely separate from every other coach's account. No one can see your data.
- Each coaching business is a separate tenant
- Students only see their own sessions — enforced at the database query level
- Coaches see only their school's data
- No cross-tenant data access
Privacy
We don't track you, and your data stays yours. Third-party services only process what's needed and don't store it.
- No third-party analytics or tracking on the marketing site
- GDPR-ready: data export and deletion on request
- Voice transcription (our speech-to-text provider): audio is streamed, not stored
- AI video review (our AI analysis provider): requires explicit consent per use
Transport security
All connections are encrypted. Data cannot be intercepted between your device and our servers.
- All connections are encrypted (TLS 1.2+ enforced)
- HSTS with 1-year max-age
- Strict Content Security Policy
- X-Frame-Options: DENY
Contact
Security questions: security@kaynos.net
Vulnerability reports: security@kaynos.net
System status and uptime: kaynos.net/status