Trust & Security

Security-first, by design

Your career data is some of the most sensitive information you own. OppZen is built to protect it at every layer — from isolated, encrypted storage to per-user access control and complete audit trails.

Encryption at rest

Sensitive personal data is encrypted before it touches disk, with provider-managed keys and a unique IV per operation.

Isolated PII vault

Government IDs and similar fields live in a dedicated, separated store — never mixed with everyday career data.

Per-user access control

PostgreSQL Row-Level Security enforces that you can only ever reach your own data — at the database layer.

Access auditing

Sensitive reads and writes append an immutable audit record, giving a complete, tamper-resistant history.

Hardened authentication

Salted, hashed passwords and hashed session tokens, with optional TOTP two-factor authentication.

Encrypted in transit

All traffic uses TLS — web and a future native app hit the same secured backend.

Policies & documentation

Already have an account? Manage your own security settings, sessions, and data.

Open your Security Center