Security architecture

Designed so sensitive family data is protected before upload.

Privara uses a zero-knowledge mindset with client-side encryption, strict Supabase RLS, audit logging, MFA, and secure billing boundaries.

Privara

Client-side AES-GCM for vault secrets when your encryption key is configured

Implemented as a first-class architecture concern with clear client, server, database, and audit boundaries.

Privara

Database access scoped to your signed-in account on household tables

Implemented as a first-class architecture concern with clear client, server, database, and audit boundaries.

Privara

Turn on MFA for your email login wherever your provider supports it — adds a decisive layer against takeover

Implemented as a first-class architecture concern with clear client, server, database, and audit boundaries.

Privara

Private activity timeline for saves and sessions you intentionally start

Implemented as a first-class architecture concern with clear client, server, database, and audit boundaries.

Ready to protect your family?

Start with the essentials — your workspace stays private behind Supabase Auth and row isolation.