Security

Security you can trust

Your data is safe. Enterprise-grade encryption, tenant isolation, role-based access, and full compliance.

Encryption

Protected at every layer

Every byte encrypted -- in transit and at rest.

TLS Everywhere

Every connection encrypted in transit with TLS 1.3. API calls, webhooks, file uploads, payment data -- nothing travels in the clear.

Encryption at Rest

All data encrypted at rest using AES-256. Database, file storage, backups -- your business data is protected even in cold storage.

Secure Authentication

httpOnly cookie-based auth with short-lived JWT tokens. No credentials stored in localStorage. Refresh token rotation prevents session hijacking.

Infrastructure

Secure by design

Isolation, access control, and accountability built into the architecture.

Multi-Tenant Isolation

Every company's data is isolated at the database level. Row-level security ensures no cross-tenant data leaks. Your data is yours alone.

Role-Based Access

Five roles: Owner, Office Manager, Salesman, Crew Lead, Crew Member. Each sees only what they need. Configurable per company.

Audit Logging

Every action logged: who did what, when, from where. Full audit trail for compliance, dispute resolution, and internal accountability.

Compliance

Your data, your rules

PCI-compliant payments and full data portability.

PCI Compliance

Payment processing through Stripe -- PCI DSS Level 1 certified. We never see or store credit card numbers. Payment data stays with Stripe.

Data Ownership

Your data belongs to you. Export anytime in standard formats. No lock-in. No ransom. Cancel and take everything with you.

Trusted by roofing companies

14-day free trial. No credit card required.

Start Free TrialTry the Demo