{"id":555,"date":"2026-06-23T12:57:15","date_gmt":"2026-06-23T12:57:15","guid":{"rendered":"https:\/\/fruitask.com\/blog\/fortifying-your-data-a-comprehensive-guide-to-fruitask-security-features\/"},"modified":"2026-06-23T12:57:15","modified_gmt":"2026-06-23T12:57:15","slug":"fortifying-your-data-a-comprehensive-guide-to-fruitask-security-features","status":"publish","type":"post","link":"https:\/\/fruitask.com\/blog\/fortifying-your-data-a-comprehensive-guide-to-fruitask-security-features\/","title":{"rendered":"&#8220;Fortifying Your Data: A Comprehensive Guide to Fruitask Security Features&#8221;"},"content":{"rendered":"<h2>Fruitask Security<\/h2>\n<p>In today&#8217;s digital landscape, ensuring the security of your data is paramount. At Fruitask, we take security seriously, employing a multifaceted approach that covers everything from account sign-in to data protection. Our security measures are designed to keep individual users and teams safe while meeting organizational and compliance needs.<\/p>\n<h3>Account Sign-In<\/h3>\n<ul>\n<li><strong>Email + password<\/strong> with email verification to ensure account ownership.<\/li>\n<li><strong>Single sign-on options<\/strong> with Google and GitHub for convenient access.<\/li>\n<li><strong>Enterprise SSO<\/strong> support for organizations seeking centralized identity management.<\/li>\n<li><strong>Password reset<\/strong> functionality utilizing secure, time-limited links.<\/li>\n<\/ul>\n<h3>Two-Factor Authentication (2FA)<\/h3>\n<ul>\n<li><strong>Two-factor authentication<\/strong> adds an extra layer of security at sign-in.<\/li>\n<li>We provide <strong>backup codes<\/strong> for recovery if you lose your second factor.<\/li>\n<li>Sensitive security values, including 2FA secrets and backup codes, are never exposed back to the client.<\/li>\n<\/ul>\n<h3>Sessions &#038; Devices<\/h3>\n<ul>\n<li>Active sign-ins are tracked as <strong>device sessions<\/strong>, detailing device type (desktop, mobile, tablet) and the IP address used.<\/li>\n<li>Sessions automatically <strong>expire<\/strong> over time and can be reviewed; signing out securely ends a session.<\/li>\n<\/ul>\n<h3>API Keys (for Developers)<\/h3>\n<ul>\n<li>Generate <strong>API keys<\/strong> to access Fruitask programmatically.<\/li>\n<li>Each key has <strong>scoped permissions<\/strong> (read, write, delete, admin) and can include an optional expiry.<\/li>\n<li>Keys track their <strong>last used<\/strong> status, allowing you to spot and revoke stale or unused keys.<\/li>\n<\/ul>\n<h3>Permissions &#038; Access Control<\/h3>\n<ul>\n<li>Workspace access is structured around <strong>role-based<\/strong> permissions: Viewer, Editor, or a Custom set of granular permissions.<\/li>\n<li>Permissions encompass data (rows\/columns), members, comments, chat, automations, plugins, launching public pages, and AI actions \u2014 and can be <strong>scoped per table<\/strong>.<\/li>\n<li>The <strong>most restrictive<\/strong> rule prevails when workspace and table permissions overlap, preventing accidental over-exposure.<\/li>\n<\/ul>\n<h3>Auditing &#038; Monitoring<\/h3>\n<ul>\n<li>An <strong>audit log<\/strong> records key actions, including user, action, IP address, device\/user agent, and the outcome (success or failure) \u2014 invaluable for investigating account activity.<\/li>\n<\/ul>\n<h3>Data Protection<\/h3>\n<ul>\n<li>Sensitive credentials you store (such as <strong>AI API keys<\/strong> and <strong>external storage provider secrets<\/strong>) are <strong>encrypted<\/strong> and not returned to the browser.<\/li>\n<li><strong>Public vs. private files:<\/strong> Private files are access-controlled with temporary, expiring links.<\/li>\n<li><strong>Bring your own storage<\/strong> option allows organizations to retain files within infrastructure they manage, meeting data-residency requirements.<\/li>\n<\/ul>\n<h3>Privacy &#038; Compliance<\/h3>\n<ul>\n<li>Fruitask provides standard legal and compliance resources, including a <strong>Privacy Policy<\/strong>, <strong>Terms of Service<\/strong>, <strong>Cookie Policy<\/strong>, <strong>GDPR<\/strong> information, a <strong>Data Processing Agreement<\/strong>, a <strong>subprocessor list<\/strong>, and <strong>data deletion\/export<\/strong> options.<\/li>\n<\/ul>\n<h3>Where to Find It<\/h3>\n<ul>\n<li><strong>2FA, sessions, sign-in methods, password:<\/strong> Account \u2192 Security.<\/li>\n<li><strong>API keys:<\/strong> developer\/API settings.<\/li>\n<li><strong>Permissions &#038; roles:<\/strong> workspace member\/collaborator settings.<\/li>\n<li><strong>Legal\/compliance:<\/strong> the policy pages in the footer (Privacy, Terms, GDPR, DPA, etc.).<\/li>\n<\/ul>\n<h3>Requirements &#038; Access<\/h3>\n<ul>\n<li>Some controls, such as enterprise SSO, audit visibility, and advanced data governance, are aimed at higher plans and organization admins.<\/li>\n<li>API access requires generating a key with the appropriate scope.<\/li>\n<\/ul>\n<h3>Limits &#038; Notes<\/h3>\n<ul>\n<li>Revoking an API key or ending a session takes effect immediately for new requests.<\/li>\n<li>Enabling 2FA significantly enhances account security \u2014 be sure to store your backup codes securely.<\/li>\n<\/ul>\n<h3>Tips<\/h3>\n<ul>\n<li>Enable <strong>2FA<\/strong> on every admin\/owner account for heightened security.<\/li>\n<li>Provide integrations with <strong>scoped, expiring API keys<\/strong> instead of broad, permanent keys.<\/li>\n<li>Utilize <strong>Custom roles<\/strong> and <strong>per-table permissions<\/strong> to adhere to least-privilege access principles.<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Security <\/p>\n","protected":false},"author":1,"featured_media":554,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[],"class_list":["post-555","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-fruitask"],"_links":{"self":[{"href":"https:\/\/fruitask.com\/blog\/wp-json\/wp\/v2\/posts\/555","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/fruitask.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/fruitask.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/fruitask.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/fruitask.com\/blog\/wp-json\/wp\/v2\/comments?post=555"}],"version-history":[{"count":0,"href":"https:\/\/fruitask.com\/blog\/wp-json\/wp\/v2\/posts\/555\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/fruitask.com\/blog\/wp-json\/wp\/v2\/media\/554"}],"wp:attachment":[{"href":"https:\/\/fruitask.com\/blog\/wp-json\/wp\/v2\/media?parent=555"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/fruitask.com\/blog\/wp-json\/wp\/v2\/categories?post=555"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/fruitask.com\/blog\/wp-json\/wp\/v2\/tags?post=555"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}