Security
Your proposals contain commercially sensitive information and your clients' personal data. This page describes the measures Beetle takes to protect that data. Questions: info@boschlogic.nl.
Access and authentication
Passwords are hashed with Argon2id (the current OWASP recommendation) and never stored in readable form. Sign-in attempts and sensitive endpoints are protected by rate limiting. Within a workspace, role-based access control ensures every user only has the permissions that belong to their role, and account suspension takes effect immediately in active sessions.
Tenant isolation
Beetleis multi-tenant: every database query is bound to your own organization on the server. Other customers' data is technically unreachable from your workspace. Public proposals are only accessible via an unguessable unique link, which you can expire yourself.
Encryption
All connections use HTTPS/TLS with automatically managed certificates. Access tokens for integrations (such as Moneybird or HubSpot) are stored encrypted with AES-256-GCM. Every page is served with a strict, per-request Content Security Policy that blocks injected scripts.
Hosting and backups
Beetle runs on UpCloud infrastructure in the EU. The database is backed up automatically every day, with a documented restore procedure that is periodically exercised through restore drills.
Logging and accountability
Sensitive actions (sign-ins, settings changes, administrative actions) are recorded in a security audit log. IP addresses in that log are stored only in pseudonymized form (hashed with a secret salt), never as a readable address.
Privacy and GDPR
The service includes self-service data-protection tooling: export of your own data, erasing or anonymizing client data, and automatic deletion of analytics and logs once their retention period ends. Email notifications carry a signed one-click unsubscribe link. Read more in the Privacy statement and the Data Processing Agreement (DPA).
Responsible disclosure
Think you have found a security issue in Beetle? Report it to us at info@boschlogic.nl, preferably with steps to reproduce. Do not exploit the vulnerability, do not modify or delete other people's data, and give us reasonable time to fix the issue before communicating about it publicly. We take every serious report seriously and will keep you informed of its resolution.