Trust & Security
Security-first, by design
Your career data is some of the most sensitive information you own. OppZen is built to protect it at every layer — from isolated, encrypted storage to per-user access control and complete audit trails.
Encryption at rest
Sensitive personal data is encrypted before it touches disk, with provider-managed keys and a unique IV per operation.
Isolated PII vault
Government IDs and similar fields live in a dedicated, separated store — never mixed with everyday career data.
Per-user access control
PostgreSQL Row-Level Security enforces that you can only ever reach your own data — at the database layer.
Access auditing
Sensitive reads and writes append an immutable audit record, giving a complete, tamper-resistant history.
Hardened authentication
Salted, hashed passwords and hashed session tokens, with optional TOTP two-factor authentication.
Encrypted in transit
All traffic uses TLS — web and a future native app hit the same secured backend.
Policies & documentation
The full technical model.
What we collect and why.
Your rights and how to use them.
The rules of the road.
Already have an account? Manage your own security settings, sessions, and data.
Open your Security Center