Security & Compliance
Enterprise-grade protection for the global freelance economy.
At Proposar, we understand that your proposals and client data are your most valuable assets. That's why we build security into every layer of our platform, from our choice of world-class infrastructure providers to our internal data handling policies.
GDPR Ready
We are fully committed to GDPR compliance. We provide data sovereignty for our users across the UK, EU, and beyond. You have full control over your data, including easy export and deletion options.
SOC2 Type II
Our core infrastructure is hosted on Supabase (running on AWS), which is SOC2 Type II certified. This ensures your data is stored in facilities that meet the highest standards for security, availability, and confidentiality.
PCI-DSS Level 1
Payments are processed through Lemonsqueezy and Stripe, both of which are PCI Level 1 Service Providers. Proposar never stores your credit card information on our servers.
Encryption
All data is encrypted in transit using TLS 1.3 and at rest using AES-256. Your proposal content is strictly private and is never used to train our AI models.
Have questions about our security practices?
Contact Security Team