Policy

Security Policy

Account Protection

Aware uses Firebase Authentication for account access and requires verified email before login. Users should use strong passwords and protect access to their email account.

Data Protection

Firestore and Storage rules should restrict profile, verification, report, and media access by role. Company verification fields must be protected from direct user edits.

Abuse Prevention

Aware should rate-limit registration, reporting, uploads, search logging, and verification requests. Suspicious activity may be reviewed or restricted.

Responsible Disclosure

If you discover a security issue, please report it privately with clear steps to reproduce. Do not access, alter, or expose other users' data.

Last updated: July 8, 2026. Security contact: connect@awareai.world