1. Identity & Access Control
Nexurmedia utilizes Supabase Auth for enterprise-grade identity management. We implement secure, HttpOnly JWT session tokens and multi-factor options to ensure that your generation history and credit balances remain protected.
2. Database Row Level Security (RLS)
Our Postgres database is protected by aggressive Row Level Security (RLS) policies. Your generations, assets, and project configurations are locked to your unique UUID. Even at the database level, unauthorized access to your creative data is mathematically impossible.
3. API Proxy Architecture
We never expose LLM or Rendering API keys to the client-side. Every prompt is proxied through our secure Next.js backend, where it is sanitized and validated before being dispatched to our model providers over encrypted HTTPS tunnels.
4. Infrastructure & Edge Security
Nexurmedia is deployed on globally distributed edge infrastructure. This provides native DDoS protection and ensures that 3D assets are delivered via high-speed, secure CDN layers with minimal latency.
5. Responsible Disclosure
If you discover a potential vulnerability in our rendering engine or backend API, please contact our security team at security@nexurmedia.com. We appreciate responsible disclosure and work quickly to address all reports.