Security Practices

Last updated: Jan 7, 2024

We take security seriously and hold it to the highest standards to ensure the protection of our users' information. Here is an overview of our approach to ensure that your account stays secure.

Your data are sent using HTTPS

Whenever your data are in transit between you and our servers, everything is encrypted, and sent using HTTPS.

Sophisticated infrastructure and physical security

The application and all your data and are hosted in Amazon Web Services, the leading cloud computing platforms. We apply strict firewall rules to prevent the system from malicious attack and unauthorized access.

Keep the system secure

The database server, web server (nginx), web application server (puma server) and software dependencies are always updated to the latest security releases to keep the system secure.

Protect your payment and subscription information

All credit card transactions are processed through Stripe, the leading payment-processing platform. We never store your credit card and payment information. It is handled securely by Stripe.

Report security vulnerability

If you discover any security vulnerability in the app, please send us an email at hello@goalfocus.io and we'll do our best to fix it as soon as possible.