Security at Gurulu

Hetzner dedicated server in Falkenstein, Germany. ISO 27001 certified data center. All data stays in the EU.

TLS 1.3 for all data in transit. AES-256-GCM credential vault for secrets. All backups encrypted at rest.

Magic link and Google OAuth sign-in. No passwords stored, ever. Device pairing with explicit approval flow.

Tenant-scoped queries across all data stores. Row-level security enforced. Zero cross-tenant data leakage by design.

Cloudflare WAF and DDoS protection on all endpoints. Rate limiting at 200 req/s per IP. Bot detection enabled.

Daily automated PostgreSQL and ClickHouse backups. 7-day retention with RAID1 mirror storage for redundancy.

24/7 uptime monitoring with automated alerting. Disk health, CPU, memory, and service-level checks run continuously.

SSH key-only server access. Fail2ban intrusion prevention. No password authentication permitted. Minimal access principle.

Fully compliant with GDPR (EU), KVKK (Turkey), and ePrivacy Directive. DPA available upon request.