Ok, this may be a dumb question, but I am learning so be gentle haha!
If I format every piece of data a user creates in my application as HMAC 256 am I creating a very secure application that would protect everything my users add to it? Or is that overkill or ineffective?
Bubble stores data on AWS so data is encrypted at rest by default. Enable SSL to ensure data sent from your client’s browser to your server/app is also encrypted. That’s all you need to do. Passwords are hashed/salted and the hash is stored in the database by Bubble. Your main concern should be Bubble privacy rules!