Verified account access
Business-email accounts must verify email ownership before sign-in or privileged access is enabled.
Security
Current platform security posture
ZoKorp focuses on practical controls that protect account access, billing actions, and uploaded inputs. This page describes the platform as it is implemented today, not a certification claim.
Server-side authorization
Paid features, admin surfaces, and entitlement checks are enforced on the server rather than trusted to the client.
Hosted billing
Checkout and billing management flow through Stripe-hosted surfaces instead of custom card handling inside the app.
Input validation and upload controls
Untrusted input is validated with schemas and upload flows apply file-type, size, and route-specific checks.
Audit visibility
Authentication, billing, and tool usage events are recorded in the platform audit trail for operational review.
Security headers
The platform uses baseline browser protections including frame, content-type, referrer, and permissions controls.
Security contact
Report suspected account abuse, access issues, or security concerns to consulting@zokorp.com. Include the affected account email, the product involved, and the behavior you observed.