Security Policy
Security is the core value proposition of Agent Billy. This document describes our security architecture, practices, and responsible disclosure process.
Last updated: March 5, 2026
Security architecture
Stripe key isolation
Your Stripe Restricted API Key is the only credential we ever handle. It is encrypted immediately upon receipt and stored in Azure Key Vault — not in any database, log file, environment variable, or browser. The plaintext key is retrieved at runtime only by your isolated container, for the duration of a single API call.
Per-customer container isolation
Each paying customer runs their own Azure Container App. Your data — including Stripe sync data, audit logs, and team information — is stored in your container's dedicated Postgres instance. There is no shared database. A compromise of one container cannot expose another customer's data.
Encryption in transit and at rest
All communication with the Service uses TLS 1.3. Data at rest in Postgres and Azure Blob Storage is encrypted using AES-256. Azure Key Vault itself uses hardware security modules (HSMs) to protect key material.
Append-only audit logging
Every action performed through Billy — whether from the dashboard, the API, or the MCP agent — is logged with who did it, what they did, when they did it, and from which IP address. Audit logs are append-only: they cannot be edited or deleted by any user, including org owners.
Server-side permission enforcement
Role-based access controls and refund caps are enforced on Billy's server — not in the browser. A user cannot bypass restrictions by making direct API calls or manipulating client-side state. All requests pass through Billy's permission middleware before touching Stripe.
Short-lived tokens
Authentication tokens (JWTs) expire after 60 minutes. Refresh tokens are stored in httpOnly cookies and are inaccessible to JavaScript. This limits the blast radius of a compromised session or device.
Compliance & certifications
SOC 2 Type II
In progress
Audit expected Q2 2026
GDPR
Compliant
Standard Contractual Clauses in place
CCPA
Compliant
Privacy rights honored on request
Responsible disclosure
We take security vulnerabilities seriously. If you discover a vulnerability in Agent Billy, please report it to us before disclosing it publicly. We commit to:
- Acknowledge your report within 24 hours
- Provide a timeline for the fix within 72 hours
- Keep you informed of our progress
- Credit you in our security acknowledgements (if you wish)
- Not take legal action against researchers who follow this policy in good faith
Please include steps to reproduce the issue, your assessment of its impact, and any proof-of-concept code. Do not access or modify customer data beyond what is necessary to demonstrate the vulnerability.
PGP key available on request.
Penetration testing
Agent Billy undergoes external penetration testing on a quarterly basis. Our most recent test was conducted in February 2026 with zero critical or high findings. A summary report is available to Business plan customers upon request.