Security & Compliance

    Your research data is critical. Moustra is built with enterprise-grade security to protect sensitive colony records, breeding data, and laboratory information.

    Data Encryption

    All data transmitted between your browser and Moustra's servers is encrypted using TLS 1.2+ (HTTPS). This ensures that colony records, animal data, and user credentials are protected during transit.

    Data at rest is encrypted using AES-256 encryption through our cloud infrastructure provider. Database backups are also encrypted and stored in geographically redundant locations to ensure data durability.

    • TLS 1.2+ encryption for all data in transit
    • AES-256 encryption for data at rest
    • Encrypted database backups with geographic redundancy

    Access Controls

    Moustra provides role-based access controls so that principal investigators, lab managers, and research technicians each see only the data relevant to their role. Administrators can manage user permissions, invite or remove team members, and audit access logs.

    • Role-based permissions (PI, Manager, Technician)
    • Secure authentication via Supabase Auth
    • Session management with automatic timeout
    • Audit trail for data modifications

    Infrastructure & Hosting

    Moustra's backend runs on enterprise-grade cloud infrastructure with built-in redundancy, automatic failover, and continuous monitoring. Our database is hosted on Supabase (backed by AWS) with automated daily backups and point-in-time recovery.

    • Cloud-hosted with automatic scaling and failover
    • Daily automated backups with point-in-time recovery
    • CDN-delivered frontend via Cloudflare for global performance
    • Continuous uptime monitoring and alerting

    Data Privacy & Ownership

    You own your data. Moustra does not sell, share, or use your colony data for any purpose other than providing the service. You can export all your data at any time in CSV format, and we provide a 30-day data retention period after account cancellation.

    • Full data ownership — your data is yours
    • CSV export available at any time
    • 30-day data retention after cancellation
    • Cookie consent with opt-in analytics

    Compliance

    Moustra is designed with the security requirements of biomedical research institutions in mind. We implement technical safeguards aligned with HIPAA Security Rule requirements, including access controls, audit logging, encryption, and automatic session management.

    For institutions that require a Business Associate Agreement (BAA), please contact our team to discuss your specific compliance needs. We work with each institution individually to ensure our security measures meet their requirements.

    Need a BAA or have compliance questions?

    Contact our team to discuss your institution's specific security and compliance requirements. We're happy to provide additional documentation and work with your IT security team.

    Contact Security Team

    Security at a Glance

    TLS 1.2+ / AES-256 encryption
    Role-based access controls
    Automated daily backups
    Data export at any time
    HIPAA-aligned safeguards
    BAA available on request
    Cloudflare CDN + DDoS protection
    Cookie consent with opt-in analytics

    Ready to Transform Your Lab Management?

    Researchers at top institutions use Moustra to streamline their mouse colony management. Start free today and experience the difference.

    Try Moustra For Free

    We use cookies

    We use cookies to analyze our website traffic and improve your experience. By clicking "Accept", you consent to our use of analytics cookies. Learn more