Last Updated: January 8, 2026
At Velosify Private Limited, security is not an afterthought—it's part of our DNA. We understand that you are trusting us with access to your production environments, and we take that responsibility incredibly seriously.
All data transmitted between your browser and our servers is encrypted using TLS 1.2 or higher. Data at rest is encrypted using AES-256 standards. Our database keys are managed via AWS KMS.
Each agent runs in a completely isolated, ephemeral container. There is no shared state between runs, and containers are securely destroyed immediately after test execution. This ensures that no data leaks between different user sessions or organizations.
We support Single Sign-On (SSO) ensuring that you can manage access to Papercuts via your existing identity provider (Okta, Google Workspace, Azure AD). We enforce Multi-Factor Authentication (MFA) for all internal employee access to production systems.
We actively welcome feedback from the security community. If you believe you have discovered a vulnerability in our service, please report it to us immediately at support@papercuts.dev. We will prioritize the investigation and remediation of any reported issues.