Resources // Security

Your Data Stays Yours.

Self-hosted, self-controlled.

Get MyKit · $349 See How It Works

Security Principles

You host it

Runs on your Hetzner VPS. Your server, your data. No third-party cloud with access to your business data.

You own the code

Audit every line. No black-box SaaS. No undisclosed data collection.

Auth is built-in

Better Auth with PostgreSQL-backed sessions. HttpOnly cookies. No bearer tokens stored client-side.

Payments via Stripe

Payment processing handled directly by Stripe. Card data never touches your server.

Infrastructure Stack

VPS Hetzner VPS (datacenter: Finland or Germany — your choice)

TLS Let's Encrypt TLS (HTTPS enforced)

PROXY Nginx reverse proxy

DB PostgreSQL (Supabase)

BKP Backups: you configure them (Hetzner snapshots, pg_dump — documentation included)

What We Never Do

✕ No telemetry or usage tracking sent back to MyKit
✕ No remote access to your instance
✕ No data shared with third parties beyond your configured API integrations (Stripe, Resend, Anthropic)

API Key Model

Each API key is yours. Stripe secret key on your server. Anthropic key on your server. Resend API key on your server. MyKit doesn't intermediate or store them.

STRIPE_SECRET_KEY your server

ANTHROPIC_API_KEY your server

RESEND_API_KEY your server

Own your data from day one.

$349 once. Your server, your code, your data.