Security at Manifold
Your most personal data deserves the strongest protection
Balance processes deeply personal health and mood data. We built our security architecture from the ground up to ensure that data stays yours — encrypted on device, in transit, and at rest, with post-quantum protection against future threats.
Security features
Every layer of our stack is designed to protect your data. From encryption to compliance, these are the foundations of how we keep your information safe.
Post-Quantum Encryption
Your data is protected by post-quantum cryptographic algorithms, safeguarding against both current and future threats from quantum computing.
Device-Level Protection
Data is encrypted on your device before it ever reaches our servers. We use client-side encryption so your data remains private, even from us.
Infrastructure Security
All data is encrypted at rest and in transit. Our infrastructure is hosted on SOC 2 compliant cloud providers with continuous monitoring and regular third-party security audits.
SOC 2 Type II Certified
We have achieved SOC 2 Type II certification, demonstrating our sustained commitment to security, availability, and confidentiality controls over time.
HIPAA Compliant
Our infrastructure meets HIPAA requirements for protecting health information. We treat all mood and wellness data with the same rigor as clinical health records.
GDPR Compliant
We comply with GDPR requirements for data protection and privacy. You have full control over your data, including the right to access, export, and delete it at any time.
Compliance and certifications
We hold ourselves to the highest standards in health data security. Our compliance posture is continuously validated through independent audits and certifications.
SOC 2 Type II
Independently audited controls for security, availability, and confidentiality.
HIPAA
Compliant infrastructure for protected health information handling and storage.
GDPR
Full compliance with EU data protection regulations, including data portability and erasure rights.
Responsible disclosure
We believe security is a shared responsibility. If you discover a vulnerability in any Manifold product or service, we want to hear from you.
Please report security vulnerabilities to security@manifold.care. We ask that you give us reasonable time to investigate and address the issue before making any public disclosure.
We will not pursue legal action against researchers who act in good faith and follow responsible disclosure practices.
Questions about security?
If you have questions about our security practices, compliance certifications, or need a copy of our SOC 2 report for your organization's review, please reach out to security@manifold.care.