Security

Grasped ApS takes the security of Grasped seriously and uses practical technical and organizational measures intended to protect accounts, service availability, and personal data against unauthorized access, misuse, and accidental loss.

Security measures are designed according to the current stage and risk profile of the service. While we work to improve them over time, we do not claim that Grasped is immune from every security risk or that any security measure is perfect.

• authentication and session controls designed to protect accounts;
• access restrictions for administrative or operational systems;
• logging, monitoring, and service diagnostics to detect reliability or abuse issues;
• infrastructure and hosting safeguards provided by service providers; and
• reasonable review and response processes for suspected incidents.

The exact controls used may evolve over time as the service matures, third-party vendors change, or the threat landscape changes.

Security is a shared responsibility. You should use a strong password, protect your login credentials, avoid sharing account access, and notify us promptly if you suspect unauthorized access or another security problem related to your account.

If you discover a suspected vulnerability, exposed data, or another security concern related to Grasped, please report it as soon as possible to grasped.app@gmail.com.

Please include enough detail for us to investigate. Do not exploit a vulnerability beyond what is reasonably necessary to demonstrate the issue, do not access data that is not yours, and do not perform disruptive testing against the live service.

If we become aware of a material security incident affecting Grasped, we will investigate, take reasonable response steps, and provide notice where required by applicable law.

We may update this page from time to time as our security practices and service maturity evolve.