Security

Our commitment to protecting your data and responsible disclosure policy.

Our Security Commitment

At AEyeHome, security is foundational to everything we build. We employ industry-leading security practices to protect the sensitive information entrusted to us by our clients.

End-to-end encryption for data in transit and at rest
Multi-tenant architecture with strict data isolation
Regular security audits and penetration testing
SOC 2 Type II compliance program
Continuous security monitoring and incident response

Responsible Disclosure Policy

We value the security research community and encourage responsible disclosure of any security vulnerabilities you may discover.

How to Report

If you believe you have found a security vulnerability in AEyeHome, please report it to us by emailing:

security@aeyehome.com

What to Include

To help us investigate and respond quickly, please include:

A detailed description of the vulnerability
Steps to reproduce the issue
Potential impact of the vulnerability
Any proof-of-concept code or screenshots
Your contact information for follow-up

Our Commitment to Researchers

We will acknowledge receipt of your report within 48 hours
We will provide regular updates on our investigation
We will work with you to understand and resolve the issue
We will not take legal action against researchers who follow this policy
We will credit researchers in our security acknowledgments (if desired)

Bug Bounty Program

We do not currently operate a formal bug bounty program with monetary rewards. However, we deeply appreciate security researchers who help us improve our security posture and will acknowledge contributions appropriately.

Scope

The following are in scope for security research:

aeyehome.com and its subdomains
AEyeHome web and mobile applications
AEyeHome APIs

Please do not:

Access, modify, or delete data belonging to other users
Perform denial of service attacks
Send unsolicited messages to users
Conduct social engineering attacks against our employees

Email Authenticity

AEyeHome may use standard email authentication mechanisms such as Sender Policy Framework (SPF), DomainKeys Identified Mail (DKIM), and Domain-based Message Authentication, Reporting, and Conformance (DMARC) to reduce spoofing and unauthorized use of its domain.

Contact

For all security-related inquiries: security@aeyehome.com

Our Security Commitment

At AEyeHome, security is foundational to everything we build. We employ industry-leading security practices to protect the sensitive information entrusted to us by our clients.

End-to-end encryption for data in transit and at rest

Multi-tenant architecture with strict data isolation

Regular security audits and penetration testing

SOC 2 Type II compliance program

Continuous security monitoring and incident response

Our Commitment to Researchers

We will acknowledge receipt of your report within 48 hours

We will provide regular updates on our investigation

We will work with you to understand and resolve the issue

We will not take legal action against researchers who follow this policy

We will credit researchers in our security acknowledgments (if desired)

Scope

The following are in scope for security research:

aeyehome.com and its subdomains

AEyeHome web and mobile applications

AEyeHome APIs

Please do not:

Access, modify, or delete data belonging to other users

Perform denial of service attacks

Send unsolicited messages to users

Conduct social engineering attacks against our employees