The security of Coggle and your data is very important, and we take great care over it.
Coggle is hosted in AWS. Access to production and development accounts is always secured with two-factor authentication. All data is encrypted at rest, and in transit. A replica of data is kept in a separate AWS region encrypted with separate keys for disaster recovery.
If you become aware of a security issue in Coggle, or in infrastructure or software that we use, you may report it to us at security@coggle.it. Please ensure that your message includes all information necessary to reproduce the problem in plain text, and without external content, or it will be discarded.
Coggle customers may run their own non-disruptive security scanning against coggle.it. Please verify any issues manually before reporting them. A human must carefully review any AI-generated or automated reports, as as these scans can often indicate false positives.
We regret that we cannot offer payment for reports. Non-security messages, or those without necessary reproduction details will not receive a reply at this address. For general help and support please contact us at hello@coggle.it