Security

Last Update: October 2025

At ANY.XYZ, we take security seriously. We build and operate digital infrastructure products that handle millions of API requests and sensitive data. We pledge to keep your data secure, follow security best practices, and never sell or share your data with any third party.

Security practices

End-to-end encryption for all data in transit using TLS 1.3
256-bit AES encryption for data at rest across all our services
Regular third-party security audits and penetration testing
Infrastructure as code with all changes versioned and reviewed
Automated vulnerability scanning and timely patch management
Multi-factor authentication for all internal systems
Regular security training for all team members

Data protection

We implement the principle of least privilege access and maintain comprehensive logging and monitoring across all our systems. Personal data is processed according to applicable privacy laws and regulations, and users maintain control over their data through our portfolio products.

Security contact

Please send any security related information or inquiries (including vulnerability disclosures) to security@any.xyz

Responsible disclosure

We believe in responsible disclosure and will work with security researchers to address any identified vulnerabilities. We commit to responding to security reports within 48 hours and providing regular updates on our progress.