Trust

Security Policy

Read about our backend encryption standards, token validation mechanisms, and vulnerability reporting procedures.

Last Updated: May 23, 2026

1. Our Security Commitment

At Easy Parking, security is built into our core backend architecture. We recognize that developer credentials, API tokens, and transactional availability data are highly sensitive, and we are committed to safeguarding these assets across our entire cloud network.

2. Cryptographic Controls & Authentication

We enforce strict standard guidelines for all inbound and outbound system requests:

• Encryption in Transit: 100% of API endpoints and landing page visits require secure Hypertext Transfer Protocol Secure (HTTPS) over Transport Layer Security (TLS 1.3). Standard HTTP requests are automatically upgraded.

• Token Security: All developer sessions and endpoint requests are authenticated using cryptographic JSON Web Tokens (JWT) or secure static API keys, preventing cross-tenant access and session hijacking.

• Password Security: Passwords stored in our backend are encrypted using cryptographic-strength hashing algorithms (PBKDF2 with SHA-256) and secure dynamic salts.

3. Payment & Transactions Safety

All payment processing actions are outsourced directly to Stripe, which is fully PCI-DSS Level 1 compliant.

Easy Parking never collects, transmits, or holds sensitive card credentials. All checkouts are loaded inside secure iframe elements or Stripe Elements containers directly, ensuring high isolation.

4. Rate Limiting & DDOS Protections

To maintain service availability and prevent resource exploitation:

• Custom throttle controls are active on all public and authenticated endpoints (e.g., 100 requests per day for standard developers).

• Automated IP banning triggers if request volumes exceed standard safety thresholds, mitigating brute force attempts and DDOS conditions.

5. Vulnerability Disclosure Policy

We welcome and highly appreciate responsible disclosures from white-hat developers and security researchers. If you identify a vulnerability in our platform, please follow these guidelines:

• Contact us directly at easyparkingapp76@gmail.com with detailed steps to reproduce the vulnerability.

• Provide us a reasonable amount of time to analyze and resolve the issue before disclosing it publicly.

• Do not attempt to access, modify, or destroy real-user database credentials during your investigation.

6. Support & Reports

For reporting security issues or requesting clarification on our cryptographic controls, reach out immediately:

Security Email: easyparkingapp76@gmail.com