lock

Security Standards

Last Updated: May 2026

vpn_lock 1. Data Encryption

EnsureKa₹ implements strict encryption strategies for both data-in-transit and data-at-rest:

  • Encryption In-Transit: All platform communications are encrypted via SSL/TLS 1.3 to prevent eavesdropping and data tempering.
  • Encryption At-Rest: Critical databases housing PAN data, prefill files, and taxpayer declarations are secured with AES-256 database-level standards.

token 2. API Integrity & Cryptographic Signatures

As an authorised Electronic Return Intermediary, our queries and filings to the CBDT e-filing gateway use signed ERI certificates and secure transaction digests. This guarantees that your filings cannot be altered or hijacked during direct transmission to the ITD.

password 3. Password & Session Security

We protect passwords with BCrypt hashing functions, ensuring they are never stored as plain text. Administrative access uses secure cryptographic tokens that automatically expire after predefined inactivity windows.

Secure Auditing: The platform maintains a complete, read-only Audit Trail capturing every authentication, prefill fetch request, form save, and submission step, enabling detailed security audits.

contact_support 4. Reporting Disclosures

If you believe you have detected a security discrepancy or vulnerability, please reach out directly through our Support Center or open a support ticket.