Security at Themistra
At Themistra, we take the security of your data seriously. While the product is currently in beta, we follow industry-standard practices to protect your information and ensure responsible handling of survey data.
Infrastructure & Hosting
- Themistra is hosted on Vercel with globally distributed, secure infrastructure.
- Application data is stored and managed using Google Firebase, benefiting from Google Cloud’s security controls, encryption, and compliance standards.
- All traffic is served over HTTPS.
Data Protection
- Data is encrypted in transit using TLS.
- Sensitive data is encrypted at rest by our cloud providers.
- Access to production systems is restricted and limited to authorized personnel only.
Authentication & Access Control
User authentication is handled via Firebase Authentication.
Supported sign-in methods include:
- Email and password
- Google Sign-In
Passwords are never stored in plain text.
Surveys & Responses
- Survey responses are accessible only to authorized survey creators within their organization.
- Public survey participants do not need an account and cannot access administrative data.
- Optional respondent data (such as email) is collected only when explicitly enabled by the survey creator.
Analytics & Tracking
- Themistra does not use advertising trackers.
- Cookies are used strictly for authentication and session management.
- No third-party analytics services are used for user profiling or marketing.
Responsible Disclosure
If you believe you’ve discovered a security vulnerability, we appreciate responsible disclosure.
Please contact us at:
We will review and respond as quickly as possible.
Beta Disclaimer
Themistra is currently in beta. While we take strong precautions, some features and controls may evolve over time as the platform matures.