Patriot BioSolutionsHosting
Vercel Edge Network with automatic TLS, DDoS protection, and global CDN distribution
Trust Center
Security and Trust Center
Operational controls, infrastructure protections, and disclosure routes for procurement teams reviewing Patriot BioSolutions.
Last updated: March 29, 2026
ACCESS
Protected operational routes
Buyer, order, and admin workflows require authenticated sessions and role checks before protected data is rendered.
DATA
Transaction evidence handling
Compliance evidence, order context, and procurement inputs are guarded by server-side validation and authorization checks.
DISCLOSURE
Public security contact
Security issues can be reported directly to security@patriotbiosolutions.com with endpoint, timing, and reproduction context.
Infrastructure and Data Protection
Patriot BioSolutions operates on managed cloud infrastructure with security controls at every layer.
Database
Supabase PostgreSQL with row-level security (RLS) enabled on all tables, encrypted at rest
Authentication
Supabase Auth with secure session management, CSRF protection on all mutation endpoints
File Storage
Supabase Storage with signed URLs and access-controlled upload endpoints
Monitoring
Sentry error monitoring with source maps, PostHog product analytics (no PII collection)
Resend transactional email with SPF/DKIM/DMARC configured on patriotbiosolutions.com
Application Security Controls
- Role-based access control (RBAC) for admin, sales, and operations roles on all protected routes.
- Zod schema validation on every inbound payload at API boundaries.
- CSRF protection on all authentication and contract mutation endpoints.
- Upload rate limiting (10 requests per 5 minutes) on file upload endpoints.
- Content Security Policy headers with nonce-based script authorization.
- OWASP ASVS controls for authorization, input validation, logging, and secrets management.
Report a Security Concern
Email security@patriotbiosolutions.com with endpoint, timing, and reproduction context.
Incident Response Process
- Acknowledge receipt within 24 hours
- Assess severity and scope of reported vulnerability
- Contain and remediate the issue
- Notify affected parties if data exposure occurred
- Document resolution and update security controls
Service Assurance
Operational commitments for procurement teams
These are the baseline service and governance signals used during buyer onboarding and vendor risk review.
Response approach
Timing varies by request complexity
Intake requests are reviewed in order of urgency and available operational capacity.
Support availability
Handled during standard U.S. business hours
Sourcing, onboarding, and documentation support are handled during active staffing windows.
Policy maintenance
Reviewed on a recurring basis
Threshold and citation references are maintained and updated when source changes are identified.
Contact Route
support@patriotbiosolutions.com
Single support route for account access, workflow help, and compliance documentation questions.