Security
Your business data is locked down. Here's how.
Credential storage
All login credentials and API keys are stored in AWS Secrets Manager — encrypted at rest, never plain text, with a full access audit trail on every read.
Database isolation
Every client's data is isolated at the database level using Supabase Row Level Security (RLS). A bug in any part of the application cannot expose your data to another client.
Encryption in transit
All data transmitted between your device, our servers, and third-party APIs is encrypted via TLS 1.3.
Authentication
Account access is protected by industry-standard authentication. We support two-factor authentication for all accounts.
Agent permissions
Slim only has access to the tools and data you explicitly grant. Permissions are scoped narrowly — Slim gets what it needs to do the job, nothing more.
Vulnerability disclosure
If you discover a security vulnerability, please email security@callslim.com. We take all reports seriously and respond within 24 hours.
Questions? Email security@callslim.com