Trust & safety
This page is maintained by the Mylawha team to answer common questions about the platform's security and privacy. It is not an independent certification.
Accounts and authentication
Accounts are accessed via email and password, or through Google. Passwords are never stored in plain text — they are managed by our managed authentication provider.
Permissions are verified server-side for every sensitive action (publishing, moderation, deletion). The administrator role is never inferred from the browser.
Data protection
Traffic between your browser and Mylawha is encrypted via HTTPS. Data is stored with our cloud host using Row Level Security rules that restrict each user to their own data.
Internal information such as artists' net prices or commission settings is only accessible to the relevant artist and the administration team.
Data we collect
Account: artist name, email, and the profile information you choose to add (bio, social links, photo).
Content: artworks, workshops, blog posts, comments and messages you publish on the platform.
Usage: aggregated statistics (artwork views, follows) to let artists track their audience.
Moderation and reporting
Each author can delete their own comments. Artists can hide comments on their works, and the administration team can intervene on reported content.
To report abusive content or behavior, contact the team via the contact page.
Report a vulnerability
If you believe you have discovered a security vulnerability, please write to us at the address listed on the contact page before any public disclosure. We review every report and respond as soon as possible.
Contact
For any question regarding privacy, account deletion or exercising your rights over your data, contact us via the contact page.
