Security

At Top8.in we take the security of our platform and your data seriously. This page outlines the measures we use to protect the site and your information.

Data in transit

We use HTTPS (TLS/SSL) for all traffic between your browser and our servers. This encrypts data in transit and helps prevent interception or tampering. You should see a padlock or secure indicator in your browser when visiting top8.in.

Authentication

Access to admin and account-related features is protected by secure authentication. Passwords are handled by our identity provider (e.g. Supabase Auth) using industry-standard hashing and practices. We do not store your password in plain text.

Data storage and access

User and application data are stored with providers that implement strong security controls, including encryption at rest where applicable. Access to data is limited to what is necessary for operating and improving the service. We follow principle of least privilege and review access periodically.

What we collect

We only collect information that is needed to run the site and improve your experience—for example, email if you subscribe, and usage data for analytics. We do not sell your personal data. For details, see our Privacy Policy.

Your role

You can help keep your account secure by using a strong, unique password and not sharing your login details. If you use our newsletter or account features, use an email address you control. If you suspect unauthorised access to your account, please contact us so we can help.

Reporting security issues

If you discover a security vulnerability on Top8.in, we would like to hear from you. Please report it to us via our contact page and avoid public disclosure until we have had a chance to address it. We will acknowledge your report and work with you to resolve the issue.

Changes

We may update this Security page as our practices evolve. The "Last updated" date at the top indicates the latest revision.