Security & Privacy

Bank-Level Protection

Your property data deserves the highest level of protection. ClaimGuardian employs enterprise-grade security measures to safeguard your digital twin and ensure your privacy remains under your control.

How We Protect Your Data

Encryption Everywhere

All data encrypted in transit and at rest using industry-standard protocols.

  • TLS 1.3 for all data transmission
  • AES-256 encryption for stored data
  • End-to-end encryption for sensitive documents
  • Encrypted database backups
  • Zero-knowledge architecture for personal documents

Privacy by Design

You control what's shared. Default settings maximize your privacy.

  • Private by default - no data sharing without consent
  • Granular privacy controls for each data type
  • Anonymous usage analytics only
  • No selling of personal information
  • Right to data portability and deletion

Infrastructure Security

Hosted on SOC 2 Type II compliant infrastructure with 99.9% uptime.

  • AWS/Google Cloud enterprise hosting
  • Multi-region data redundancy
  • Automated security monitoring
  • Regular penetration testing
  • 24/7 security incident response

Data Protection

Multiple layers of protection ensure your property data stays secure.

  • Regular automated backups
  • Point-in-time recovery capabilities
  • Data residency controls (US-based)
  • Audit logs for all data access
  • GDPR and CCPA compliance ready

Access Controls

Strict access controls ensure only authorized personnel handle your data.

  • Multi-factor authentication required
  • Role-based access control (RBAC)
  • Least privilege principle
  • Regular access reviews and audits
  • Background checks for all staff

Compliance & Audits

Regular third-party security audits and compliance certifications.

  • Annual security audits by certified firms
  • SOC 2 Type II compliance (in progress)
  • GDPR and CCPA compliant data handling
  • Regular vulnerability assessments
  • Incident response plan tested quarterly

Data Processing & Storage

What We Store

  • • Property information you provide
  • • Photos and documents you upload
  • • AI analysis results and insights
  • • Account and billing information
  • • Usage analytics (anonymized)

What We Don't Store

  • • Credit card information (Stripe handles)
  • • Social security numbers
  • • Unnecessary personal identifiers
  • • Browsing history outside our platform
  • • Location data (unless explicitly provided)

Third-Party Subprocessors

We work with trusted partners who meet our security standards:

Infrastructure

  • • Vercel (Hosting & CDN)
  • • Supabase (Database & Auth)
  • • AWS (Storage & Processing)

Services

  • • Stripe (Payment Processing)
  • • OpenAI (AI Processing)
  • • Resend (Transactional Email)

Security Incident Response

In the unlikely event of a security incident, we have a comprehensive response plan:

  • • Immediate containment and assessment
  • • Notification within 72 hours (as required by law)
  • • Transparent communication about impact and resolution
  • • Post-incident review and security improvements

Questions About Security?

We're committed to transparency about our security practices. If you have questions about how we protect your data or want to report a security concern:

Contact Security TeamGeneral Support

This security page was last updated on January 7, 2025. We continuously review and improve our security measures to protect your property intelligence.