Wageso

Last updated: May 2026

Security

Security Overview

Wageso is built around a simple principle: your financial data should stay private and remain under your control. Security decisions are made to support that privacy-first model.

End-to-End Encryption

Your data is encrypted before it leaves your device:

  • Client-side encryption: All data is encrypted on your device before transmission
  • AES-256 encryption: Industry standard for maximum security
  • PBKDF2 key derivation: Your master password generates unique encryption keys
  • Zero-knowledge architecture: We cannot decrypt or access your data

Data Protection

We implement multiple layers of protection to safeguard your information:

  • Local-first approach: Your data stays on your devices by default
  • Encrypted storage: Even local data is encrypted at rest
  • No plaintext transmission: Data is never sent unencrypted
  • Secure protocols: All communications use TLS 1.3

Infrastructure Security

Infrastructure choices are made to keep sync reliable without exposing plaintext financial data:

  • TLS 1.3 encryption for all data in transit
  • Encrypted relay infrastructure for cross-device sync
  • No plaintext financial content stored in infrastructure logs
  • Regular security updates and patches

Authentication & Access Control

Multiple layers of authentication protect your account:

  • Master password: Your key to decrypt all data
  • Biometric authentication: Fingerprint and face recognition support
  • Device-based security: Automatic locking when inactive
  • Session timeout: Automatic logout for added security

Transparent Foundations

Wageso is not marketed as open source, but it is built on transparent technology choices, including open-source foundations for encrypted sync where appropriate.

Security Audits

Security is reviewed as the product evolves, and responsible disclosure from security researchers is welcome. The goal is practical, continuous improvement rather than inflated security claims.

Security Best Practices

To maximize your security, we recommend following these best practices:

  • Use a strong, unique master password
  • Create regular encrypted backups of your data
  • Keep the app updated to the latest version
  • Secure your devices with passwords and biometric locks

Security Incident Response

In the unlikely event of a security incident, we have established procedures to respond quickly, minimize impact, and keep you informed. Our zero-knowledge architecture ensures that even in worst-case scenarios, your encrypted data remains protected.

Security Contact

If you discover a security vulnerability or have a security-related question, please write to: Email: [email protected]

Security Updates

This security documentation is regularly updated to reflect our current practices and any changes to our security measures. We are committed to maintaining the highest standards of security for your financial data.