Your data, your rules

public

EU hosting (Hetzner DE)

Server runs in Hetzner datacenter in Germany — under EU jurisdiction and GDPR. No US Cloud Act, no foreign subpoenas. Your data never leaves European legal protection.

Specifically: Hetzner Online GmbH, Falkenstein/Vogtland, ISO 27001 certified.

lock

HTTPS / TLS transport

All browser-to-server traffic uses HTTPS with TLS 1.2 and TLS 1.3 (Let's Encrypt cert, auto-renew). Legacy and insecure protocols (SSL, TLS 1.0/1.1) are disabled. The server sends an HSTS header valid for 1 year — your browser remembers it and will only ever connect to Treziqo over HTTPS, even if someone tries an HTTP downgrade.

HTTPS configuration rated A+ in the public Qualys SSL Labs assessment (see panel below).

vpn_key

Hashed passwords + 2FA

Passwords are never stored in plaintext — bcrypt hashing on every registration (slow-by-design, mitigates offline brute-force at scale). You can enable two-factor authentication (TOTP) in /settings — compatible with Google Authenticator, Authy, 1Password.

On password change, sessions on other devices are invalidated (AuthenticateSession middleware) — eventual force-logout after a leak.

enhanced_encryption

Sensitive data encryption

Sensitive server configuration (e.g. SMTP password for mail relay) is AES-256 field-level encrypted in the DB via APP_KEY. Transaction notes encryption is opt-in in /settings → Security — once enabled, no one with DB dump read access can read them. Trade-off: it disables full-text search in note text (amount, date, category and account stay searchable).

Note encryption is optional — default after sign-up is off, so full-text search works. Enabling it (anytime) trades note text search for protection against DB leaks.

backup

Daily backups

Database is backed up daily via Laravel Forge — snapshot to isolated storage for fast recovery after hardware failure, mistake, or migration. We retain the last 14 days of backups.

Backups never leave the EU; only the project author has access.

verified_user

Regular security audits

CI workflow runs on every push to main — gitleaks scans for accidental API keys committed to git, composer audit + npm audit for CVEs in dependencies, Larastan level 5 static analysis, Pest test suite (340+ tests). Dependabot opens PRs weekly for outdated packages.

Goal: no incident should be caught only after a production deploy.

block

No tracking, no ads

No Google Analytics. No Facebook Pixel. No third-party cookies. Your expenses are never seen by Meta or any ad-tech. The cookies banner only shows technically essential cookies — no „accept all" theatre.

Verify yourself: open DevTools → Network → you'll only see treziqo.com and paypal.com (subscribe flow).

how_to_reg

Your data, your export, your deletion

Anytime in /settings you download a ZIP with everything we have on you — JSON files with accounts, transactions, categories, budgets, payments. Same anytime you delete your account in one click (with confirmation) and everything is gone. No „give us 30 days notice", no retention on our side.

No part of our business depends on holding data against your will — Treziqo is paid by subscription, not by lock-in.

support_agent

Responsible disclosure

Found a security issue? Email security@treziqo.com with details and reproduction steps. I promise a response within 72 hours and a fair approach — no legal threats over good-faith disclosure. We publish known incidents.

Goal is cooperative networks, not an adversarial relationship with researchers.