Legal
Security
RoosPlus is built around secure defaults, tenant-aware platform behavior, and practical protections that help businesses operate public pages with confidence.
1) Security approach
RoosPlus is a multi-tenant platform, so isolation and scoped access matter. The product is designed to keep each business operating inside its own context while still benefiting from a shared system underneath.
Tenant-aware data handling
Tenant-scoped models are designed to use business context and scoped queries so one business does not accidentally read another business's operational data.
HTTPS and SSL support
RoosPlus supports secure delivery for public pages and custom domains with SSL so customers reach pages over HTTPS rather than plain-text connections.
Browser-level protections
The platform applies security-oriented response headers such as referrer policy, content-type sniffing protection, frame restrictions where appropriate, and HSTS on secure connections.
Protected owner actions
Owner-side changes are intended to happen inside authenticated workflows, and standard web form flows are protected with CSRF defenses.
Payments and providers
RoosPlus supports payment-driven experiences through supported providers such as Stripe and PayPal. Businesses should configure these providers carefully and review their own obligations for payment operations, refunds, and compliance.
Reporting a concern
If you believe you have found a security issue or need to report suspicious activity, email help@roosplus.net and include the business name, affected page, and enough detail for investigation.