Your Escrow Data, Fort Knox Protected.

TLS 1.3 encryption for all data in transit

AES-256 encryption for data at rest

HSTS enforced with 2-year max-age and preload

All database connections encrypted end-to-end

File storage encrypted on Google Cloud

Enterprise authentication powered by Google

Multi-factor: email/password and Google OAuth

Role-based access control (owner, officer, admin)

Company-level data isolation — zero cross-tenant access

Integration webhook signature verification

Hosted on Vercel — SOC 2 Type II compliant

Database on Google Cloud — SOC 2, ISO 27001 certified

Payments via Stripe — PCI DSS Level 1

SMS via Twilio — SOC 2, ISO 27001

Global edge network with DDoS protection

Serverless — no exposed servers to attack

Full audit trail on every document action

Every upload, classification, sync, and notification logged

Real-time API monitoring and alerting

Rate limiting on all public endpoints

Automated anomaly detection

AI powered by Anthropic — SOC 2 compliant

Documents are NEVER used to train AI models

Processed in-memory only — not stored by AI provider

Full data ownership retained by your company

Server-side processing — docs never exposed to browsers

Per-company data isolation with strict access boundaries

Client portal uses opaque tokens — no predictable URLs

Content Security Policy prevents injection attacks

All user input sanitized and validated

Secure headers: X-Frame-Options, X-XSS-Protection, Referrer-Policy

GreenFolders, SoftPro, DocuSign — credentials encrypted at rest

Integration keys stored per-company, never shared cross-tenant

E-signature webhooks cryptographically verified

Stripe payment webhooks signature-validated

All third-party connections over HTTPS only

All data hosted in US data centers

CCPA compliant (California Consumer Privacy Act)

TCPA compliant SMS with opt-out support

Data deletion available on account termination

Regular security audits and dependency monitoring

GDPR-ready data export and deletion