Security you can build a journal on
Manuscripts represent years of work and confidential peer review. Protecting them is a core part of how AuthXpress is built and operated.
How we protect your data
Encrypted in transit & at rest
All traffic is served over HTTPS, and stored manuscripts and data are encrypted at rest by our infrastructure providers.
Role-based access control
Every action is gated by explicit roles. Editors, reviewers and admins only ever see what their role permits.
Complete audit trails
Sensitive actions — decisions, downloads, proxy sessions — are logged with actor, time and context for accountability.
Per-tenant separation
Each journal's data is logically isolated so information never leaks across titles or publishers.
Capability-based file access
Manuscript files are served through short-lived, signed links scoped to a single object — never public URLs.
Backups & recovery
Scheduled backups with tested restore paths protect against data loss, with safety snapshots before any bulk import.
Responsible disclosure
If you believe you've found a security vulnerability, we want to hear from you. Please email security@authxpress.com with details and steps to reproduce. We investigate every report and will keep you updated on our progress. Please give us a reasonable window to address the issue before any public disclosure.