Security
We take security seriously. Here's exactly how we protect your barbershop data, your staff information, and your customers' privacy.
All data is encrypted in transit using TLS 1.2+ and encrypted at rest. Your business data and customer information are never stored in plain text.
Payment processing is handled through Paystack, a PCI-DSS compliant payment provider. Kinyozi never stores raw card details on our servers.
Role-based access means staff only see what they need to. Owners have full control, while barbers only access their own performance and earnings data.
Every barbershop on Kinyozi is fully isolated. Your data is logically separated from every other shop — no cross-tenant data access is possible.
Your data is backed up continuously on Neon's managed PostgreSQL infrastructure with point-in-time recovery. We retain backups so your data is never lost.
Passwords are hashed using bcrypt. We support email verification on signup and provide secure password reset flows with time-limited tokens.
Critical actions in your account are logged with timestamps and actor information, giving you a clear trail of what happened and when.
Kinyozi runs on Vercel's global edge network with our database hosted on AWS in the EU West region. We rely on battle-tested, enterprise-grade infrastructure.
If you discover a security vulnerability in Kinyozi, we ask that you report it to us privately before disclosing it publicly. We take all reports seriously and will respond promptly.
Report a vulnerabilityWe're happy to answer any questions about how we handle your data.
Contact Us