Security

Last updated:

At Kloudpad Inc., security is fundamental to klapp's design. We've built klapp with privacy and security as core principles, ensuring your data remains under your control.

1. Local-First Architecture

Your Data Stays Local

klapp operates with a local-first architecture. All coworker workflows, file processing, and data operations occur on your device. Your files, emails, spreadsheets, and other data never leave your desktop unless you explicitly opt in to sync features.

2. No Cloud LLM Dependency

Unlike many AI tools, klapp does not rely on cloud-based large language models. This means:

Your data is never sent to third-party AI services for processing
No risk of data exposure through AI model training or inference
Deterministic, explainable execution without external API calls
Complete control over your data processing pipeline

3. Data Encryption

3.1 Encryption at Rest

When data is stored locally on your device, klapp uses industry-standard encryption to protect sensitive information. All local databases and configuration files are encrypted using AES-256 encryption.

3.2 Encryption in Transit

When you opt in to sync features or communicate with our servers, all data transmission is encrypted using TLS 1.3. This ensures that data cannot be intercepted or read during transmission.

4. Access Controls

4.1 Granular Permissions

klapp implements fine-grained permission controls for each coworker:

File system access is restricted to specified directories
Application access is limited to authorized apps only
Network access can be restricted or monitored
Each coworker operates with minimal necessary permissions

4.2 User Authentication

Account access is protected through:

Secure password requirements with complexity rules
Multi-factor authentication (MFA) support
Session management with automatic timeout
Account lockout after failed login attempts

5. Audit and Compliance

5.1 Comprehensive Logging

klapp maintains detailed audit logs for all coworker executions:

Complete execution history with timestamps
Input and output data tracking
Decision points and workflow steps
Error logs and exception handling
User actions and configuration changes

5.2 Compliance Ready

Our security practices are designed to support compliance with:

GDPR (General Data Protection Regulation)
CCPA (California Consumer Privacy Act)
HIPAA (for healthcare use cases with appropriate configurations)
SOC 2 Type II (in progress)

6. Secure Development Practices

6.1 Code Security

Regular security code reviews
Automated vulnerability scanning
Dependency management and updates
Secure coding standards and best practices

6.2 Security Testing

Penetration testing on a regular basis
Automated security testing in CI/CD pipeline
Third-party security audits
Bug bounty program (coming soon)

7. Infrastructure Security

7.1 Server Security

For optional cloud features, we maintain:

Infrastructure hosted on secure, compliant cloud providers
Regular security patches and updates
Network segmentation and firewall rules
Intrusion detection and monitoring systems
Regular backup and disaster recovery procedures

7.2 Data Center Security

Our cloud infrastructure providers maintain:

Physical security controls at data centers
24/7 monitoring and surveillance
Redundant power and network connectivity
Environmental controls and fire suppression

8. Incident Response

We maintain a comprehensive incident response plan that includes:

Rapid detection and assessment of security incidents
Containment and mitigation procedures
User notification processes
Post-incident review and improvement
Compliance with breach notification requirements

9. Vulnerability Disclosure

We take security vulnerabilities seriously. If you discover a security issue, please:

Email us at security@klapp.work with details
Include steps to reproduce the vulnerability
Allow us reasonable time to address the issue before public disclosure
Do not exploit the vulnerability or access data beyond what's necessary to demonstrate the issue

We commit to acknowledging reports within 48 hours and providing regular updates on our progress.

10. Security Updates

klapp automatically checks for security updates and notifies users when updates are available. We strongly recommend keeping klapp updated to the latest version to ensure you have the latest security patches and improvements.

11. Best Practices for Users

To maximize your security when using klapp:

Keep klapp and your operating system updated
Use strong, unique passwords for your account
Enable multi-factor authentication when available
Review and limit coworker permissions to minimum necessary
Regularly review audit logs for unexpected activity
Be cautious when enabling sync features and understand what data will be synced
Use secure networks when accessing cloud features

12. Third-Party Security

When klapp integrates with third-party services (e.g., payment processors, email providers), we:

Only work with vendors that meet our security standards
Use OAuth and secure API connections where possible
Minimize data sharing to only what's necessary
Regularly review third-party security practices

13. Security Certifications

We are working toward obtaining the following security certifications:

SOC 2 Type II (in progress)
ISO 27001 (planned)

Certification status will be updated on this page as we achieve them.

14. Contact Security Team

For security-related questions or concerns, please contact:

Kloudpad Inc. Security Team
Email: security@klapp.work
For urgent security issues, please include "URGENT" in the subject line.

Security is Our Priority

We continuously work to improve klapp's security posture. This page is updated regularly to reflect our current security practices and improvements.