Security — EzBillGuru

As the Developer is an individual releasing this Software primarily for testing/educational and small business scenarios, the following security guidance and limitations apply. This page is intended to help administrators deploy the Software more safely.

1. No absolute guarantee

The Developer makes reasonable efforts to follow secure coding practices, but does not guarantee the Software is free from vulnerabilities. You accept responsibility for how you deploy and operate it.

2. Recommended deployment practices

Use HTTPS — always terminate traffic with TLS/HTTPS to protect credentials and data in transit.
Strong passwords — require strong administrative passwords and, if possible, multi-factor authentication for your hosting environment.
Network controls — place administrative interfaces behind VPNs or IP allowlists where practical.
Backups — maintain regular automated backups (encrypted at rest), and test restores periodically.
Updates — apply updates to the Software, operating system and dependent libraries in a timely manner.
Least privilege — run services with least privilege, avoid running as root, and restrict database access credentials.

3. Data protection

Protect sensitive fields such as customer contact information and financial data. Encrypt backups and use secure storage. If you integrate third-party payment processors or email services, follow their secure integration documentation.

4. Logging & monitoring

Keep logs of access and errors on a separate system where possible.
Monitor unusual activity (failed logins, repeated errors) and configure alerts.

5. Vulnerability reporting

If you discover a security vulnerability, please do not publish it publicly. Report it privately to support@ezybilling.in (or the contact email you prefer) with details and steps to reproduce. The Developer will acknowledge and work to remediate issue as appropriate. The Developer is an individual — response times may vary.

Important: The Developer disclaims liability for data breaches, system intrusions, or other security incidents arising from use of the Software. You must secure, maintain, and indemnify your deployment and ensure compliance with applicable laws.

6. When to seek professional help

If you operate the Software for many customers, process sensitive personal data at scale, or rely on it for mission-critical operations, we strongly recommend engaging a professional auditor or managed service provider to perform security reviews and hardening.

7. Contact

Report security concerns: support@ezybilling.in.