Security

Security at Revenue Cone

Revenue Cone handles sensitive financial and personal data on behalf of public institutions and their payers. Security is not an afterthought. It is a core design requirement.

Security practices

Encryption in transit

All communication between clients and the Revenue Cone platform is encrypted using TLS 1.2 or higher. We enforce HTTPS across every endpoint. There is no unencrypted HTTP fallback.

Role-based access control

Every user account carries a role (admin, finance director, field officer) enforced at the API layer. Field officers can only access records they have been assigned. No role can escalate its own permissions.

Tenant isolation

Each organisation's data is isolated by a verified tenant identifier derived from the authenticated session, never from the request body. Cross-tenant data access is structurally impossible by design.

Webhook verification

Every payment gateway webhook is verified using the provider's signature before any state change is applied. Unverified webhooks are rejected and logged.

Audit logging

Every significant action (login, payment, assessment creation, data export) is written to an immutable audit log with timestamp, user ID, and IP address. Logs are retained for at least 7 years.

Account lockout

Repeated failed login attempts trigger automatic lockout and alert notifications. Rate limiting is applied to all authentication endpoints.

Sensitive field handling

Fields such as TIN, NIN, and payment references are never written to application logs or error messages. They are scrubbed at every logging boundary.

Dependency management

We track dependencies for known vulnerabilities and apply security patches as a priority. Major framework updates follow a tested release process.

Data handling

Revenue Cone stores data on managed cloud infrastructure. All production databases use managed PostgreSQL with automated backups and point-in-time recovery. File storage (receipts, attachments) is restricted to authenticated requests only.

Financial and audit records are retained for a minimum of 7 years in line with Nigerian financial regulations. Deletion requests for personal data are honoured subject to applicable legal retention requirements. See our Privacy Policy for full details.

Responsible disclosure

If you discover a security vulnerability in Revenue Cone, please report it to us privately before public disclosure. We commit to acknowledging your report within 2 business days and providing a resolution timeline within 7 days for critical issues.

Security emailsecurity@revcone.com

Please includeSteps to reproduce, affected endpoint or feature, potential impact

We ask that youNot access, modify, or exfiltrate data beyond what is necessary to confirm the vulnerability

General security questions

For security questions that are not vulnerability reports, such as procurement questionnaires, compliance queries, or integration security, contact us via the form below.