Docs.
Everything a bank, partner, security researcher, or regulator needs — integration guides, the OpenAPI spec, the security whitepaper, the cryptographic reference implementation.
For integrators
Server-to-server affordability assessments for banks, fintechs, and lenders. Auth, endpoints, request/response schema, webhook signatures, errors.
Machine-readable contract — drop into Stoplight / Postman / Insomnia. Single source of truth for request and response shapes.
For security & compliance reviewers
Zero-knowledge architecture, audit trail, compliance roadmap, top FAQ. The page every bank vendor-due-diligence team needs.
Full architecture, threat model, key management, audit roadmap. Intended for bank / lender / regulator due-diligence reviews. Open with Cmd+P to save as PDF.
What PostHog sees, what it never sees, how a user opts out. Three layers of PII scrubbing documented.
Lawful basis (consent, Art 6(1)(a)), data subject rights, retention, cookie posture (cookieless), ICO registration status.
For security researchers
The actual encryption code that runs in every Veqtrx user's browser, published under MIT. Includes 11 PROOF tests demonstrating what the server cannot see. Clone, diff, run.
PGP-acceptable disclosure channel. We acknowledge within 24 hours, triage with CVSS within 5 business days, patch on severity-driven timeline.