akinGet the app

Security at Akin

Akin is designed to collect less, separate public identity from private account data, and enforce access at the database boundary.

Product security

  • Encrypted HTTPS traffic.
  • Supabase Auth for credentials and session management.
  • Row Level Security with default-deny policies on application tables.
  • Server-side enforcement of conversation and participation limits.
  • Rate limiting on account, posting, commenting and reporting flows.
  • Restricted service credentials that never ship to the browser or mobile app.

Operational security

Production errors are monitored without intentionally recording conversation text in analytics. Access to administrative tooling is limited and logged.

Dependencies, authentication paths and database policies are reviewed as part of the release process.

Report a vulnerability

Send a concise report through the contact form and choose Security. Include reproduction steps and impact. Do not access, alter or retain other people’s data while testing.

A dedicated security.txt address will be published before production launch.

Still need help?

Contact Akin