Trust Center

Built on trust. Operated with care.

This page is maintained by ELP Ventures IV LLC (d/b/a DNA WEB) to answer common security and privacy questions about the DNA WEB platform. It describes the controls and practices that are in place today. It is not an independent certification.

Data in transit & at rest

All traffic to dnaweb.ai is served over HTTPS (TLS). Customer data is stored in a managed PostgreSQL database with provider-managed encryption at rest.

Authentication

DNA WEB uses third-party identity providers (Google and Apple). We never see or store account passwords. Leaked-password protection is enabled for any password-based auth flows.

Hosting & infrastructure

The platform runs on managed cloud infrastructure with global edge delivery. Database, queueing and email services are provided by our managed backend partner.

Access control

Row-Level Security is enabled on customer-data tables. Application access is scoped to the authenticated user; privileged service-role access is limited to server-side operations.

Payments

Payments are processed by Stripe. Card numbers are never stored on DNA WEB systems; Stripe is PCI-DSS Level 1.

Privacy & data rights

We honor data export and deletion requests. See the Privacy Policy for details and how to contact the data team.

Subprocessors

DNA WEB uses the following subprocessors to deliver the service. We update this list as our infrastructure evolves.

  • StripePayments
  • SupabaseDatabase, auth, queueing
  • CloudflareEdge & delivery
  • FirecrawlSource retrieval
  • GoogleOAuth (sign-in)
  • AppleOAuth (sign-in)

Security overview

Read our security practices →

System status

Check service availability →

Questions, vulnerability disclosures or compliance requests: info@dnaweb.ai. ELP Ventures IV LLC (d/b/a DNA WEB), New York, USA.