Compliance

On this page

• Review posture
• Security basics
• Infrastructure
• Data residency
• Subprocessors
• DPAs
• Questions

Review posture

OpsCurb provides documented security controls, a tiered AWS access model, and direct support for buyer review. This is a strong fit for startup teams that want plain-English trust details and direct answers during evaluation. If your team requires certification-led enterprise procurement, contact us early so we can validate fit and process requirements.

Security basics

• Managed provider encryption at rest and TLS in transit
• Row-level security for data isolation
• Optional TOTP MFA support
• Dependency scanning via Dependabot

Infrastructure

We run on managed providers including AWS, Supabase, Railway, Vercel, and DodoPayments.

Data residency

By default, data is stored in US-East (Virginia). Enterprise customers can request EU or other regions — email sales@opscurb.com.

Subprocessors

AWS, Supabase, Railway.app, Vercel, DodoPayments. We'll notify you 30 days before adding new ones.

DPAs

Data-processing terms may be available for Enterprise arrangements. Email support@opscurb.com to discuss requirements.

Questions

• General / legal: support@opscurb.com
• Security: security@opscurb.com