Trust Center
Built on trust. Operated with care.
This page is maintained by ELP Ventures IV LLC (d/b/a DNA WEB) to answer common security and privacy questions about the DNA WEB platform. It describes the controls and practices that are in place today. It is not an independent certification.
Data in transit & at rest
All traffic to dnaweb.ai is served over HTTPS (TLS). Customer data is stored in a managed PostgreSQL database with provider-managed encryption at rest.
Authentication
DNA WEB uses third-party identity providers (Google and Apple). We never see or store account passwords. Leaked-password protection is enabled for any password-based auth flows.
Hosting & infrastructure
The platform runs on managed cloud infrastructure with global edge delivery. Database, queueing and email services are provided by our managed backend partner.
Access control
Row-Level Security is enabled on customer-data tables. Application access is scoped to the authenticated user; privileged service-role access is limited to server-side operations.
Payments
Payments are processed by Stripe. Card numbers are never stored on DNA WEB systems; Stripe is PCI-DSS Level 1.
Privacy & data rights
We honor data export and deletion requests. See the Privacy Policy for details and how to contact the data team.
Subprocessors
DNA WEB uses the following subprocessors to deliver the service. We update this list as our infrastructure evolves.
- StripePayments
- SupabaseDatabase, auth, queueing
- CloudflareEdge & delivery
- FirecrawlSource retrieval
- GoogleOAuth (sign-in)
- AppleOAuth (sign-in)
Security overview
Read our security practices →
System status
Check service availability →
Questions, vulnerability disclosures or compliance requests: info@dnaweb.ai. ELP Ventures IV LLC (d/b/a DNA WEB), New York, USA.