1. Security program
Novaverb uses administrative, technical, and organizational controls designed to protect customer data and service availability. Security is reviewed as part of product design, infrastructure operation, and support workflows.
2. Access controls
- Role-based access controls for workspaces and administrative functions.
- Authentication controls, session protections, and support for stronger account security where available.
- Least-privilege access for operational systems and internal tooling.
3. Data protection
Novaverb uses HTTPS for transport, applies secure configuration practices, and limits operational access to customer data to what is needed for support, reliability, security, and requested product functionality.
4. Monitoring and incident response
We monitor service health, application errors, authentication events, and security-relevant activity. If we identify a security incident affecting customer data, we will investigate and notify affected customers when legally required or appropriate.
5. Responsible disclosure
If you believe you found a security issue, email hello@novaverb.com with enough detail to reproduce it. Do not access, modify, destroy, or disclose data that does not belong to you, and do not disrupt service availability.
6. Customer responsibilities
Customers are responsible for protecting account credentials, limiting workspace access to trusted users, verifying domains before sensitive recommendations, and ensuring they have rights to connect or crawl added properties.