---
title: "Security | Fignis"
description: "Learn how Fignis protects sensitive financial planning data with hardened transport security, browser protections, secure access, account boundaries, and disciplined operations."
locale: "en"
kind: "landing-page"
canonical_url: "https://www.fignis.io/security/"
html_url: "https://www.fignis.io/security/"
markdown_url: "https://www.fignis.io/markdown/en/security.md"
last_updated: "2026-05-27"
---

# Security | Fignis

> Learn how Fignis protects sensitive financial planning data with hardened transport security, browser protections, secure access, account boundaries, and disciplined operations.

## Security summary
Fignis is used to model sensitive financial decisions, so we protect your data with strong encryption, hardened browser controls, secure authentication, account boundaries, disciplined operations, and a clear rule: we do not and never will sell your data.

## Independent verification
- **SSL Labs:** A+ — TLS / Certificate grade (https://www.ssllabs.com/ssltest/analyze.html?d=fignis.io)
- **MDN Observatory:** 10/10 — HTTP security headers (https://observatory.mozilla.org/analyze/fignis.io)
- **Security Headers:** A+ — Browser policy grade (https://securityheaders.com/?q=fignis.io&followRedirects=on)

## 1. Externally tested web security
Fignis scores A+ on SSL Labs and Security Headers, plus 10/10 on MDN Observatory. For you, that means the connection and browser rules around your planning workspace are tested against public standards for modern HTTPS, strong TLS, HSTS, restrictive content loading, MIME-sniffing protection, and careful cross-origin controls.
Many sites stop at basic HTTPS. Fignis goes further by making these controls explicit, measurable, and continuously verifiable with independent public scanners.

## 2. Strong encrypted connections
Your browser connects to Fignis over HTTPS with a hardened TLS configuration, so the financial assumptions you enter are encrypted while they travel between your device and Fignis.
TLS encrypts the connection between your browser and Fignis. We support only current TLS versions, so weaker connection methods are not accepted.

## 3. Hardened browser protections
Fignis sends security headers that tell your browser which resources may load, where pages may be embedded, and how sensitive content should be handled, reducing the chance that another site can interfere with your planning session.
These controls reduce exposure to content injection, clickjacking, MIME-type confusion, and cross-origin leakage.

## 4. Secure access
Fignis supports social login and email-based accounts, so you can sign in without sharing financial account credentials.
For email-based accounts, passwords are protected using one-way hashing and salting before they are stored. For Google sign-in, Fignis never receives or stores your Google password; Google verifies your identity and Fignis uses that verified sign-in to create a secure session.

## 5. Database and data security
Your planning data is separated by account in the application and database access layer, so it stays within the account it belongs to unless access is intentionally shared.
We treat this information as private financial planning data, use it only to provide, secure, support, and improve the service, and do not and never will sell your data.

## 6. Operational discipline
Fignis stores and manages its application data on infrastructure we control, instead of relying on shared third-party application platforms for core data handling.
We limit access to systems and credentials, manage infrastructure through controlled processes, monitor reliability and security signals, and review changes before they reach users.

## 7. Security is continuously maintained
Security scores are useful because they make important controls visible and testable.
We treat them as a baseline to maintain, not a one-time badge. As standards evolve, we review our configuration and update it where needed.

## Security contact
For security questions or vulnerability reports, email us at security@fignis.io