Security Policy

This page explains core security controls and how SikaBooks responds to security incidents.

Last Updated: February 27, 2026

1. Security Program

SikaBooks applies layered controls for platform security, including network protections, account safeguards, logging, and operational monitoring.

2. Access Control

  • Role-based access and permission boundaries are enforced in product workflows.
  • Administrative and user actions are logged for traceability where supported.
  • Authentication hardening features such as multi-factor controls are available in core flows.

3. Data Protection

  • Data is isolated by tenant/business architecture.
  • Sensitive operations follow least-privilege and auditability principles.
  • Backup and recovery procedures are used to improve resilience.

4. Incident Response

Potential security events are investigated with priority. Where customer impact is confirmed, affected accounts are notified with scope, mitigation actions, and required next steps.

5. Customer Responsibilities

Customers must protect credentials, assign access by role, review account activity, and promptly report suspicious behavior.

6. Responsible Disclosure

Report security issues to support@sikabooks.com with reproduction details and impact notes. Please do not run destructive tests against production systems.

Security controls evolve continuously. Material policy updates will be reflected on this page.