Security

Our deployable live chat and analytics products are designed to run on infrastructure you control. Production customer data, conversation history, analytics events, and session replay payloads are stored in databases and object storage you operate unless a signed agreement states otherwise.

This architecture reduces third-party vendor access to your operational data but places security responsibility for production environments on your team.

Deployable products support tenant and site isolation, authenticated operator access, hashed ingest credentials, and separation of analytics data from transactional application databases where applicable.

Our public website is served over HTTPS. We limit access to business systems and use reputable infrastructure providers for hosting and email.

Contact form submissions are transmitted via your email client using mailto and are not stored in a server-side database on this marketing site.

To report a security vulnerability related to our website or documented deployable products, email hello@ownerlayer.com with sufficient detail to reproduce the issue. We ask that you allow reasonable time for remediation before public disclosure.

You are responsible for patching, network security, secrets management, backups, access reviews, and lawful processing of data in deployments you operate. Security addenda may be included in enterprise statements of work on request.