Overlap

Trust center

Security at Overlap

Overlap is designed so public booking and voting do not grant direct access to private account tables. Sensitive mutations run through authenticated, validated server endpoints.

Controls in place

Responsible disclosure

If you believe you found a vulnerability, email support@meetoverlap.com with steps to reproduce it. Do not access other people's data, disrupt service, or use destructive testing. We will acknowledge credible reports and work toward a fix.

Scope

Overlap is not currently marketed as HIPAA-compliant, and it is not intended for emergency or clinical workflows. School use should be administered by adults and reviewed under the school's own privacy and vendor requirements.

Security — Overlap