Trust
Security at NameToProfile
We treat your data and the data you process with care. Here's how.
Our practices
Encryption
Data is encrypted in transit (TLS) and at rest.
No data selling
We never sell personal data. Sub-processors are used solely to deliver the service, under contract.
Least privilege
Access to production data is restricted and logged.
Secrets stay server-side
API keys never reach the browser; the client holds only an httpOnly session cookie.
Session integrity
CSRF protection on mutating requests; session tokens are never exposed to client JavaScript.
Resilient by design
Validated inputs and graceful degradation keep the service stable under failure.
See also our Privacy Policy and Data Processing Addendum.