Least-privilege mindset

Segurança

ProspectB2B is built with predictable data flows and a least-privilege mindset. We keep security guidance clear and practical, without overstating compliance claims.

Account basics

Account and session handling

We keep authentication flows straightforward and minimize exposure of sensitive account context in the workflow.

Session awareness

Sessions are scoped to the minimum required for the experience. We monitor for unusual access patterns and prioritize clarity over complexity.

Data boundaries

Data stays attached to the owning account and workspace. We avoid sharing data across teams unless it is explicitly part of the workflow.

Review-ready

If you need a security review, contact us. We will walk through the areas that matter for your evaluation.

Request a review

Access control

Roles and ownership clarity

We focus on ownership and accountability. The right people should see the right records, and handoffs should stay transparent.

Role-driven access

Roles align with daily workflows so permissions stay easy to reason about for admins and managers.

Ownership tracking

Lead ownership is visible at every stage to prevent ambiguous handoffs or lost follow-ups.

Change awareness

When something changes, we prefer a clear record of what was updated so teams can stay aligned.

Responsible disclosure

Vulnerability reporting

We appreciate responsible reports. Include enough detail so we can reproduce the issue quickly.

Email contact@prospectb2b.com with the subject “Security report.” Provide steps to reproduce, affected URLs, and expected vs. actual behavior.

If you need a security review, contact us. We will coordinate next steps based on your evaluation needs.

Operational reliability

Reliability with clear expectations

We aim for stable, predictable uptime and communicate changes or incidents when they impact customers.

Outbound teams rely on continuity. We prioritize operational consistency and alert affected users if a change could interrupt daily workflows.

Straight answers

Security FAQ

Practical guidance for teams reviewing ProspectB2B.

How do you think about data handling?

We focus on predictable data flows and limiting access to only what a role needs. If a workflow does not require certain data, we avoid collecting or exposing it.

Can I request a security review?

Yes. Email contact@prospectb2b.com with context about your review requirements and we will coordinate next steps.

How should I report a vulnerability?

Send a report to contact@prospectb2b.com with the subject “Security report.” Include steps to reproduce and any affected URLs.

What should a security report include?

Please share the impacted page, expected vs. actual behavior, reproduction steps, and any evidence that helps us validate the issue.

Do you publish incident updates?

If a material issue impacts customers, we communicate directly with affected users and summarize remediation steps once confirmed.