Security at OptiMe

    Your trust is paramount. We implement industry-leading security measures to protect your personal wellbeing data.

    GDPR Compliant
    SOC 2 Type II
    ISO 27001

    Data Encryption

    Encryption in Transit

    All data transmitted between your device and our servers is protected using TLS 1.3 encryption, the most secure transport protocol available.

    Encryption at Rest

    Your data is encrypted using AES-256 encryption when stored in our databases, ensuring protection even in the unlikely event of a breach.

    Infrastructure Security

    Our infrastructure is hosted on industry-leading cloud platforms with robust security controls and certifications.

    DDoS Protection

    Automatic mitigation of distributed denial-of-service attacks

    Web Application Firewall

    Protection against common web vulnerabilities

    Regular Backups

    Automated daily backups with point-in-time recovery

    Network Isolation

    Segmented networks with strict access controls

    Intrusion Detection

    24/7 monitoring for suspicious activity

    Disaster Recovery

    Multi-region redundancy for business continuity

    Access Control

    Role-Based Access

    Strict role-based access control ensures employees only access data necessary for their job functions.

    Multi-Factor Authentication

    All administrative access requires multi-factor authentication. MFA is available and encouraged for all users.

    Session Management

    Automatic session timeouts and secure token management protect against unauthorized access.

    Compliance & Certifications

    GDPR

    Full compliance with the EU General Data Protection Regulation

    SOC 2 Type II

    Independent verification of security, availability, and confidentiality controls

    ISO 27001

    Certified information security management system

    Privacy by Design

    Privacy is embedded into every aspect of our product development process:

    • Data minimisation — we only collect what's necessary for the service
    • Purpose limitation — data is only used for stated purposes
    • User consent — explicit consent before processing personal data
    • Data portability — easily export your data in standard formats
    • Right to erasure — request complete deletion of your data
    • Transparency — clear communication about data practices

    Vulnerability Disclosure

    We welcome responsible disclosure of security vulnerabilities. If you discover a security issue, please report it to us promptly.

    Security Team

    security@optime.com

    Please include detailed information about the vulnerability, steps to reproduce, and your contact information. We commit to acknowledging reports within 48 hours and will keep you informed of our remediation progress.

    Questions About Security?

    Our security team is here to help with any questions or concerns.

    security@optime.comdpo@optime.com (Data Protection Officer)
    OptiMe

    Your personalized wellbeing companion. Transform your life across six key pillars with expert guidance, AI coaching, and progress tracking.

    For Business

    For Individuals

    About OptiMe

    Flok Co-Working Space

    20-26 Albert Road

    Middlesbrough

    England

    TS1 1PR

    Legal & Support

    Stay Updated

    Get wellbeing tips and updates delivered to your inbox.

    © 2026 OptiMe Limited