Security
Security as a first principle
Encryption, secret management, audit logs and regulated partners — controls by design, not as an afterthought.
Encryption in transit and at rest
TLS 1.2+ on all traffic; sensitive fields encrypted at rest.
Secret management
API keys live in the server-side secret store; never sent to the client.
Audit logs
Every admin action stored with a timestamped, immutable record.
Partner infrastructure
Banking, card and payment rails through regulated partners.
Webhook verification
Cryptographic signature verification on every provider event.
Incident response
Defined process and communication channels, 24/7.
Report a vulnerability: info@dobank.co
Contact us