What exactly is OryoNex?

OryoNex is an AI-powered kanban project management platform for teams. It brings tasks, chat, calendar, Journal, and Brainstorming Hub into one workspace so teams can execute with clarity.

What's the difference from other Kanban tools?

Traditional Kanban tools list tasks. OryoNex adds AI task extraction (Brainstorming Hub, Journal), Challenges and scoring, and built-in chat and calendar to help teams not only list tasks but execute intelligently.

What is a Workspace? How many can I create?

A workspace is a separate organizational area for each project. Each workspace has its own board, team members, tasks, and settings. The number of workspaces depends on platform settings and your plan, and can be increased by an admin if needed.

How do AI credits work? Why a credit system?

AI features consume credits. Credits belong to a user account; within a workspace, AI usage typically deducts from the workspace owner's (first admin) balance. The credit system helps manage AI usage and cost.

Is my data secure? Is there a backup system?

Data is stored in PostgreSQL. All communication is protected with TLS/HTTPS; RBAC is enforced in the app and chat messages are encrypted with AES-256-GCM. Backup processes are handled according to the operational plan. Only you and authorized team members can access your data.

Enterprise-Grade Security

Your Data Security is Our Priority

OryoNex is built with security at its core. We use industry-leading practices to protect your data.

ISO 27001

In Development

GDPR

Compliant

SOC 2 Type II

In Development

KVKK

Compliant

Security Features

Comprehensive security measures to keep your projects and data safe.

Secure Communication

All data is encrypted in transit using TLS 1.3. HTTPS enforcement and HSTS ensure secure connections at all times.

Secure Authentication

Bcrypt password hashing, JWT tokens, HttpOnly cookies and OAuth integration for secure session management.

Secure Infrastructure

Helmet security headers, CSP, XSS protection, rate limiting and DDoS prevention for enterprise-grade protection.

24/7 Monitoring

Comprehensive audit logging system, rate limit logging and automated security alerts for continuous monitoring.

Compliance & Audits

KVKK and GDPR compliance, privacy policy, terms of service and regular security updates.

Data Security

Secure hosting on European servers, regular backups and data encryption protocols.

Implemented Security Features

Security measures and best practices actively used in our project.

Bcrypt secure password hashing (10+ rounds)
JWT-based authentication with HttpOnly cookies
Rate limiting: Separate limits for Auth, API, Chat
Helmet security headers (CSP, HSTS, XSS)
Comprehensive audit logging and activity tracking
Role-based access control (RBAC)

Data Protection

Active security measures

Bcrypt Password Hashing

TLS 1.3 + HSTS

HttpOnly Secure Cookies

Security Concerns?

Our security team is here to help. Report vulnerabilities or ask questions about our security practices.

Contact Security Team