Security at Verdik

Verdik processes submission-related information you provide, such as screenshots, listing copy, rejection context, and review notes, in order to generate audit results and recommendations.

This information should only include what is necessary for your review workflow. Avoid sharing unnecessary personal or highly sensitive data in submission fields.

Account access is tied to authenticated user sessions. Protected product areas such as audit, dashboard, and settings are intended for signed-in users only.

Access to audit records should be restricted to the account that created them. Internal systems should follow least-privilege principles wherever possible.

Screenshots and related audit inputs may be stored to support audit generation, result retrieval, and returning users who resume the same workflow later.

Verdik should retain only what is operationally useful for the product experience and should avoid exposing audit data outside the authenticated account context.

Verdik aims to use standard modern safeguards for hosted web applications, including protected infrastructure, managed identity systems, and controlled access to production resources.

Security is an ongoing process. Practices, infrastructure, and controls may evolve over time as the product matures.

Do not upload secrets, raw credentials, payment card information, or unnecessary personal data unless absolutely required for the specific App Review workflow.

If reviewer access instructions are needed, share only the minimum information necessary to explain the review path.

If you have a security-related question, notice, or concern, contact Verdik and include relevant context so the issue can be reviewed efficiently.

Email: hello@verdik.app