Security & data handling
Your audio data is processed securely and never stored longer than necessary. Enterprise-grade protections at every layer.
Encryption in Transit
All API communication uses TLS 1.3. Audio files are fetched over HTTPS only.
Data Retention
Audio files are processed in memory and never persisted to disk. Results are retained for 30 days.
Rate Limiting
API endpoints are rate-limited to prevent abuse. Cloudflare WAF protects against DDoS and bot attacks.
API Key Security
API keys are hashed with SHA-256 before storage. Raw keys are shown once at creation and never again.
Authentication
Firebase Authentication with email/password and Google sign-in. JWT tokens for API access.
Audit Logging
All API requests are logged with timestamps, IP addresses, and request metadata for compliance.
Abuse Prevention
TTSAudit implements multiple layers of abuse prevention. Rate limiting is enforced at both the API gateway (Cloudflare) and application levels.
Signup and authentication endpoints use Firebase Authentication anti-abuse protections, including reCAPTCHA-based verification and provider risk checks.
Data Handling
Audio files submitted for analysis are fetched from the provided URLs, processed in memory, and never written to persistent storage. Only analysis results (scores, labels, metadata) are stored.
We do not use your audio data for training or improving our models. Your content remains yours.
Retention Policy
Analysis results are retained for 30 days by default. Enterprise customers can configure custom retention periods (7–90 days) or immediate deletion after webhook delivery.
User account data is retained while the account is active. Upon account deletion, all associated data is purged within 30 days.
Infrastructure
TTSAudit runs on Google Cloud infrastructure (Firebase App Hosting, Cloud Functions, Firestore) with SOC 2 and ISO 27001 compliance.
All infrastructure is provisioned with least-privilege IAM policies. Secrets are managed through Google Cloud Secret Manager.