Security Architecture
AuraWorks (Pty) Ltd maintains a "Security by Design" mandate. Our infrastructure is built to protect the industrial lead intelligence of the South African B2B ecosystem.
01. Data Encryption Standards
In Transit
All data moving between the AuraWorks Tracker and our FastAPI backend is encrypted using TLS 1.3 (SSL), ensuring zero-interception of intelligence.
At Rest
Our PostgreSQL databases utilize AES-256 industrial-grade encryption. Managed keys ensure that data remains unreadable even if physical storage is compromised.
02. Global Infrastructure
Hosted on Vercel and AWS (Cape Town / Dublin regions), leveraging world-class physical security and multi-layered DDoS protection.
03. The Tracker Protocol
Non-Blocking Performance
The AuraWorks tracker loads asynchronously, ensuring zero impact on the "Core Web Vitals" or page load speed of the client's site.
Scoped DOM Access
Our script is "Read-Only." It cannot access passwords, credit card fields, or sensitive PII unless explicitly mapped for the Consent-Led Digital Receptionist.
API Security
Every request to our FastAPI backend is authenticated via a unique Organization ID and CORS Policy, ensuring only authorized domains can push data to your account.
POPIA Alignment
Our security controls are mapped to the Protection of Personal Information Act. We maintain internal audit logs of all administrative access to ensure 100% traceability.
Continuous Vigilance
We perform automated dependency scanning for all Python (FastAPI) and Next.js libraries. In the event of a suspected breach, AuraWorks maintains a 24-hour incident response protocol as required by POPIA.
SECURED BY FASTAPI & POSTGRESQL ENCRYPTION