# Privacy & Security

### Principles: <a href="#principles" id="principles"></a>

1. **Local Storage**:
   * Data stays on the user’s device.
   * Cloud sync with encryption.
2. **Encryption**:
   * End-to-end encryption for communications.
   * AES-256 for local storage.
3. **Access Control**:
   * Role-based permissions (admin, member, guest).
   * Two-factor authentication (2FA).

### Certifications: <a href="#certifications" id="certifications"></a>

* GDPR
* ISO 27001