Information Security at Kaspere

Kaspere is a U.S.-based store, and we treat the security of our systems and your data as a first-class part of how we operate. This page summarizes our practices; the full policy (v1.0, effective May 11, 2026) is available on request at support@kaspere.com.

How we protect data

• Encryption everywhere. All connections to our systems use TLS 1.2 or higher. Credentials and sensitive records are encrypted at rest with industry-standard AES-256.
• Hardened infrastructure. Our production servers use key-only authentication, strict firewalls limiting access to required ports only, and intrusion-prevention software that automatically blocks repeated failed access attempts. Security patches are applied automatically.
• Least-privilege access. Kaspere operates a single-operator access model with no shared accounts. Every API integration is scoped to the minimum permissions required, and multi-factor authentication protects all critical accounts.

Your personal data

• Data minimization. We collect and store only the data strictly necessary to operate the store and fulfill your orders.
• No selling of personal data. No third-party data sharing occurs without explicit consent.
• Your rights. You may request access to, correction of, or deletion of your personal data at any time. We honor these requests within 30 days, consistent with applicable privacy laws including the California Consumer Privacy Act (CCPA). See our Privacy Policy.

If something goes wrong

We maintain a documented incident response plan covering detection, containment, investigation, and notification. In the event of a confirmed breach affecting your data, we will notify affected customers within 72 hours, consistent with applicable regulatory timelines.

Contact

Security questions, vulnerability reports, or data requests: support@kaspere.com
Kaspere · 1575 Westwood Blvd Ste 302, Los Angeles, CA 90024