Security & Trust
Security is built into every layer of the Lesuto platform — from how we handle payments to how we isolate tenant data. We don't bolt on security as an afterthought. It's foundational.
Security Layers (Defense in Depth)
Infrastructure Security
Your application runs on Google Cloud with Cloudflare in front. No servers to manage, no patches to apply, no SSH access to compromise.
Hosted on Google Cloud Run (us-west1) with Google-managed infrastructure, automatic scaling, and built-in DDoS protection. No servers to patch — Google handles it.
TLS 1.3 on all connections. AES-256 encryption at rest. SSL-only enforced on database connections — unencrypted access is blocked at the infrastructure level.
Daily automated backups with point-in-time recovery. Backups stored in a separate geographic region (us-central1) from the primary database (us-west1) for disaster resilience.
DNS, SSL, and tenant routing handled by Cloudflare with built-in Web Application Firewall, DDoS mitigation, and rate limiting across the entire network.
Automated CodeQL security analysis on every code change. Dependabot monitors all dependencies for known CVEs weekly. Pre-commit hooks block credential leaks before code is committed.
CI/CD via GitHub Actions with no manual server access. Every deploy is a fresh container. No SSH, no shell access. CODEOWNERS enforces review on security-sensitive changes.
Payment Security
All payment processing is handled entirely by Stripe. Lesuto never stores, processes, or has access to raw card numbers. Period.
All payment processing handled by Stripe, the industry leader. Lesuto never stores, processes, or transmits raw card numbers. Stripe is PCI-DSS Level 1 certified — the highest level of payment security.
Supplier and merchant payouts via Stripe Connect Express (51 countries) or Wise (23 additional countries). Every payout recipient is verified before they receive funds.
Automatic tax calculation at checkout. Tax compliance handled by Stripe's certified tax engine — W-8BEN/W-9 forms, tax transactions, and reversals all managed programmatically.
Stripe's built-in fraud prevention with 3D Secure authentication for high-risk transactions. Additional layer of verification protects both merchants and customers.
All Stripe webhook payloads verified with cryptographic signatures before processing. No unsigned or tampered event can trigger any action in the system.
Consumer Protection
Every transaction runs through Lesuto. That means both buyers and sellers are protected at every step of the process
Every purchase is processed through Lesuto's Stripe integration. Your payment is held securely and only released to the supplier after the return window.
Full return lifecycle managed by the platform. Request a return, ship it back, and receive your refund — the platform mediates the entire process.
Every supplier is monitored with a 12+ signal risk score. Suppliers with poor fulfillment, high return rates, or quality issues are flagged and removed.
Tax is calculated upfront at checkout via Stripe Tax. The price you see includes everything. No surprise fees after purchase.
We never send you emails unless you opt in. Your data is never sold. You can request deletion at any time.
Commission payouts are held until the return window expires. This protects you from chargebacks on returned items.
The platform automatically prevents discounts that exceed your commission percentage. Your margins are always protected.
Customer disputes are mediated through the platform's support system. You're never alone in resolving issues.
Every supplier on the platform is verified and monitored. You're selling products from businesses, not anonymous factories.
Your commission is calculated and displayed before you subscribe to any supplier. No hidden fees, no surprises on payout day.
Why does this matter? Because every transaction on every Lesuto storefront is processed by Lesuto Technologies, Inc. Whether you're buying a $50 candle or a $5,000 dining table, you're covered by the same payment protection, return policies, and dispute resolution system. The merchant curates the experience — we handle the rest.
Application Security
Every role, every route, every API call is permission-gated. If one security layer is bypassed, the others still hold. No single point of failure.
26 pre-built permission templates covering every combination of merchant, supplier, and staff access. Every API endpoint, every screen, every button is gated by granular permissions.
Server-side resolver guards, navigation permission overrides, client-side route interception, and channel picker restrictions. No single point of failure — if one layer is bypassed, the others still hold.
Each business operates in its own channel with complete data isolation. Merchants cannot see other merchants' orders, customers, or products. Suppliers are isolated the same way.
All GraphQL API requests require authentication. Public endpoints are explicitly allowlisted. Rate limiting and request validation on all mutations prevent abuse.
Secure HTTP-only cookies with SameSite protection. 365-day password expiration with 30-day warnings. Last 5 passwords cannot be reused. Complexity requirements enforced server-side.
Data Privacy
We believe in minimal data collection and maximum user control. We only collect what's needed to process orders and manage accounts — nothing more.
Users must explicitly opt in to receive any email notifications. Master toggle plus per-category controls — everything defaults to OFF.
We only collect what's needed to process orders and manage accounts. No tracking pixels, no invasive analytics.
We never sell personal data to third parties. Your data is yours. Full stop.
Customers can request data access, correction, or deletion at any time. We support CCPA/CPRA rights today.
We will never send you emails unless you explicitly opt in. All notification preferences are controlled from your account settings.
Compliance Journey
We're building toward formal certifications. Here's where we stand today and what's coming next. No false claims — just facts.
Active security measures in production
Planned certifications and programs
Transparency note: We do not hold SOC 2, ISO 27001, or HIPAA certifications today. The items in the "What's Coming" column represent our roadmap, not current capabilities. We rely on Stripe for PCI compliance and Google Cloud for infrastructure-level certifications.
We welcome security researchers to report vulnerabilities responsibly. If you've found a security issue in the Lesuto platform, please reach out to us directly. We take every report seriously and will work with you to resolve it.
Report a VulnerabilityContact our team through the secure form or review our Privacy Policy for detailed information about how we protect your data.
Contact Security Team