Encrypted at Rest & Transit
All data encrypted with TLS 1.3 in transit and AES-256 at rest
GDPR Compliant
Fully compliant with UK GDPR, EU GDPR 2016/679, and UAE Federal Law No. 45 of 2021
PCI-DSS via PayPal
We never store card numbers. All payments processed by PayPal Level 1 PCI-DSS
Role-Based Access
Staff see only their own clinic's data. No cross-tenant data exposure
Automated Backups
Daily database backups with point-in-time recovery
No Data Selling
We never sell, rent, or share your client data with third parties
Infrastructure
Ngozi CRM runs on enterprise-grade infrastructure:
- Application hosting: Vercel — global CDN with DDoS protection, automatic HTTPS, and 99.99% SLA
- Database: PostgreSQL on Railway and/or Supabase — EU/US data centres, encrypted at rest, automated daily backups
- Payments: PayPal — PCI-DSS Level 1 certified. Card data never reaches our servers.
Data Encryption
- In transit: All connections enforced over TLS 1.2+ (HTTPS). HTTP requests are automatically redirected to HTTPS.
- At rest: Database storage encrypted at the infrastructure level (AES-256)
- Passwords: Hashed using PBKDF2-SHA256 (via Werkzeug). Plaintext passwords are never stored.
- Sessions: Server-side encrypted sessions. Session tokens are never exposed to client-side JavaScript.
Access Controls
- Multi-tenancy: Every database query is scoped to the authenticated organisation's ID. Cross-tenant data access is architecturally prevented.
- Role-based permissions: Owner, Manager, and Staff roles with granular page-level access control
- Admin separation: The admin dashboard uses a separate authentication flow and PIN
- API authentication: All API endpoints require a valid session. Unauthenticated requests return 401.
Your Client Data
The data you enter about your clients — names, contact details, treatment notes, photos — belongs entirely to you. We operate as a data processor on your behalf.
- We never access, analyse, or use your client data for any purpose other than delivering the service to you
- We never share client data with third parties
- You can export all your data at any time
- On account closure, all data is permanently deleted after a 90-day retention window
GDPR Compliance
Ngozi CRM is designed with GDPR compliance in mind:
- You are the data controller for your client data; we are the data processor
- Data Processing Agreements (DPAs) available on request
- Right to erasure requests processed within 30 days
- Data portability — full export available at any time
- No data transferred outside the EEA/UK without adequate safeguards (Standard Contractual Clauses)
For DPA requests: privacy@ngozi-crm.beauty
Vulnerability Disclosure
If you discover a security vulnerability in Ngozi CRM, please report it responsibly to security@ngozi-crm.beauty. We will acknowledge your report within 48 hours and aim to remediate critical issues within 7 days. We ask that you do not publicly disclose the issue before we have had a chance to address it.
Questions
Security questions: security@ngozi-crm.beauty