Get Access

Security at Nid

Your inventory data is personal. We treat it that way.

We take the security of your inventory data, receipts, and communication seriously. This page explains the measures we take to protect your information across the Nid mobile app, desktop app, and website.

Data Encryption

All data transmitted between your device and our servers is encrypted using TLS 1.2+ protocols. Inventory records, receipt files, team messages, uploaded files, and personal account details remain protected in transit.

We also encrypt sensitive data at rest within our databases and storage systems. Appwrite-managed infrastructure handles encrypted storage volumes and secure backup procedures.

Secure Infrastructure

Nid is built on Appwrite's cloud platform, benefiting from 24/7 infrastructure monitoring, automated backups, redundant storage, and isolation between projects and services.

We continuously update servers, libraries, and dependencies to mitigate known vulnerabilities and maintain a secure environment.

Access Control

You remain in control of your local data and any optional shared-folder setup you choose to use.

  • Shared Folder Access: If you collaborate through a synced folder, access depends on who you authorize in the external sync tool you use, such as Resilio Sync.
  • Authentication: Authentication is handled securely through identity providers (Apple, Google, Facebook) and Appwrite. Passwords, where applicable, are hashed and never stored in plain text.
  • Permissions: Revoking access to a shared folder must be done in the external sync tool that distributes that folder.

Payment Security

We do not store or process your credit card details. Purchases are handled through the relevant app store or marketplace provider:

  • Apple App Store
  • Google Play Store

These payment processors are responsible for their own PCI-DSS compliance and payment security controls.

Operational Security

Internal access to data is strictly limited. Only authorized Nanornia AB personnel—who require access for support, debugging, or operations—may access certain backend systems, and only under logged and controlled circumstances.

We follow least‑privilege principles, multi-factor access for administrative systems, and regular internal security reviews.

Reporting Issues

If you believe you've discovered a security vulnerability or a potential risk within Nid, please contact us immediately at security@getnid.com.

We take all reports seriously and investigate promptly.