Security & Trust Center
Encryption Standards
All API payloads are encrypted in transit using TLS 1.2/1.3. Data at rest (logs and queues) is encrypted using AES-256 block-level encryption.
Domain Authentication
Strict DMARC policy (p=reject) applied. 100% of outbound operational traffic is signed with 2048-bit DKIM keys and aligns with strict SPF records.
Vulnerability & Incident Response
Our IT Infrastructure team conducts quarterly internal audits. In the event of a suspected breach or misrouting of transactional payloads, our automated systems execute a lockdown of the API gateway within 300 milliseconds.
Dedicated IP Infrastructure
To guarantee delivery of critical System Alerts (e.g., password resets) without being impacted by shared reputation pools, Codsall & Wergs utilizes strictly dedicated, whitelisted IP infrastructure isolated from general corporate mail flow.
PGP Key available upon request.