Security

Your client data is safe with us

We handle data for financial advisors and insurance consultants — we understand the stakes. Here's exactly how we protect it.

Infrastructure
Where your data lives and how it's served
Cloudflare Global Network
All Milestone data is stored on Cloudflare's infrastructure — one of the world's largest and most trusted networks, with data centres across Asia-Pacific.
Cloudflare D1 Database
Client data is stored in Cloudflare D1 (SQLite), automatically backed up and replicated. Your data is never stored on a single server.
Edge Computing
Our backend runs on Cloudflare Workers — serverless edge functions with no persistent server to compromise or patch.
Singapore-region primary
Requests from Singapore and Southeast Asia are served from nearby Cloudflare edge nodes, keeping latency low and data close to home.
Encryption & Access
How data is protected in transit and at rest

All data is encrypted in transit using TLS 1.3. Every request between your browser and our servers travels over HTTPS — there's no unencrypted channel.

Data at rest is encrypted by Cloudflare's storage layer. We don't manage encryption keys ourselves — Cloudflare handles this transparently with AES-256.

Authentication uses session tokens, not passwords in transit. When you log in, we issue a short-lived bearer token. Your password is never stored in plain text — it's hashed with bcrypt before being saved.

Every API call is authenticated server-side. There's no client-side trust — even if someone manipulates the app in their browser, the server verifies every request independently.

AI Features & Data Handling
What happens when you use AI Insights or email drafts

When you use AI features (client insights, email drafts, message suggestions), relevant client data is sent to Anthropic's API to generate the response. This is processed in real time and not used to train Anthropic's models under our enterprise agreement.

We send only the minimum data needed for the task — typically the client's name, notes, and policy/relationship context. We do not send sensitive financial figures, ID numbers, or data unrelated to the specific AI task.

AI-generated content is always shown to you before anything is sent — you review and approve every message before it reaches a client.

Your API keys are never exposed
All AI calls are made server-side through our secure proxy. Your Anthropic API key (ours, not yours) is stored as an encrypted Cloudflare Worker secret — it never appears in the browser or in any client-facing code.
Data Practices
What we do and don't do with your data
What we do
Store your client data to power the app. Send notification emails on your behalf via Resend. Use data to generate AI insights when you explicitly request them.
What we don't do
Sell or share your data with third parties. Use your client data for advertising. Train AI models on your data. Access your account unless you ask us to for support.
Incident Response
What happens if something goes wrong

In the unlikely event of a data breach or security incident, we will notify affected users by email within 72 hours of becoming aware of it, in accordance with applicable data protection laws.

If you discover a security vulnerability, please report it responsibly to [email protected]. We take all reports seriously and will respond within 48 hours.

Questions about how we handle your data?
Email us at [email protected] — we'll reply within one business day.