Security & privacy

Authentication

No passwords to leak — sign in is passwordless by design.

Magic-link sign-in, plus Google and Microsoft OAuth
Work-email-only sign-up for the seller side
SSO / SAML — Enterprise, coming soon

Data

Encrypted on the move and at rest, with strict tenant isolation.

TLS encryption in transit
Encrypted at rest on Supabase / AWS
Tenant isolation via Postgres row-level security across the schema

Buyer links

Every buyer gets their own link — and you stay in control of it.

Individually signed per stakeholder
Instantly revocable when access should end

AI

A clear boundary between the buyer's and seller's data.

Anthropic is a subprocessor for AI features
Designed so the buyer/seller data boundary holds across AI context

Email

Auditable, and easy for buyers to opt out of.

Audit-logged delivery
Per-stakeholder, one-click unsubscribe

Privacy

We track engagement, not people — no creepy fingerprinting.

Engagement events power the signals you see
IP and user-agent captured on legal acceptance only
Vercel analytics; no fingerprinting or persistent tracking cookies

Deletion. You can archive and delete your rooms and their data right inside Zocove. Need an account or all of your data fully removed? Email support@zocove.com and we'll take care of it.

Security questions. For anything security-related — architecture, data handling, or a vendor review — reach our team at security@zocove.com.

Certifications. Zocove is an early-stage product and does not currently hold formal security certifications. We're happy to walk your security team through our architecture — just reach out.

Features overview

Buyer engagement

Stakeholder visibility

Mutual action plans

Deal health

AI for both sides

Built to be safe to put in front of your buyer.

Authentication

Data

Buyer links

AI

Email

Privacy

Questions from your security team?