Security is at the core of PrimeDocu. We use industry-standard practices to protect your documents and personal data. This document explains our security model and how to responsibly report vulnerabilities.

1. End-to-End Encryption

Every document you upload is encrypted on your device BEFORE leaving it. We use:

We cannot read your documents. Even if our servers were compromised, attackers would only see encrypted blobs they cannot decrypt.

2. Where Your Keys Live

3. Cloud Storage

4. Authentication

5. Payment Security

6. AI Processing Security

7. Infrastructure

8. Access Controls

9. Vulnerability Reporting

We welcome security researchers. If you discover a vulnerability, please report it responsibly:

We do not currently operate a paid bug bounty program but will publicly credit researchers in our changelog (with consent).

10. Out-of-Scope

The following are NOT considered security vulnerabilities:

11. Compliance

12. Incident Response

In the event of a data breach affecting your account, we will notify you within 72 hours via email and in-app notification, with details about what data was affected and recommended actions.

13. Contact

Security inquiries: security@primedocu.com

General support: support@primedocu.com