Security & Trust

Last updated: June 2026

Security and trust are built into BetterWeb. This page explains, in plain language, how we protect your data and run our service. If you have a security question or want to report a vulnerability, email security@betterweb.ai.

Your data stays yours

Your data is yours. It is kept isolated to your account and is not sold, and not used to train models for other customers. We use it only to provide the service you signed up for.

Encryption

All data is encrypted in transit using TLS (HTTPS) across our applications and APIs.

Infrastructure

BetterWeb runs on established, enterprise-grade infrastructure (Cloudflare and Hetzner). Our applications sit behind Cloudflare for network security and DDoS protection.

Access and accounts

We follow least-privilege access: team members only get access to what their role requires. Administrative accounts require multi-factor authentication. Secrets and credentials are never stored in our source code.

Sub-processors

We use a small set of trusted vendors to deliver the service. The ones that may process customer data include:

• Cloudflare - hosting, CDN, and network security
• Hetzner - server infrastructure
• Anthropic and OpenAI - AI model providers
• ElevenLabs - voice features
• Twilio - SMS and voice messaging
• Google - workspace and analytics
• Stripe - payment processing

We will keep this list current. If you need a Data Processing Agreement (DPA), we are happy to sign one. Contact support@betterweb.ai.

Compliance roadmap

We are committed to meeting the security standards our customers expect. SOC 2 is on our roadmap. We will update this page as we complete formal certifications. We do not claim certifications we have not yet earned.

Reporting a concern

If you believe you have found a security issue, please email security@betterweb.ai. We appreciate responsible disclosure and will respond promptly.