Security
How we protect your data
At FreightAI, security is fundamental to everything we do. We understand that you're trusting us with sensitive business documents and data. Here's how we keep it safe.
Encryption at Rest
All data stored in our systems is encrypted using AES-256 encryption, the same standard used by banks and government agencies.
Encryption in Transit
All data transmitted between your devices and our servers is protected with TLS 1.3 encryption.
SOC 2 Compliance
We follow SOC 2 Type II standards for security, availability, and confidentiality of customer data.
Access Controls
Role-based access controls ensure that only authorized personnel can access sensitive data and systems.
Infrastructure Security
Our infrastructure is built on Google Cloud Platform, which provides:
- 24/7 physical security at data centers
- Redundant power and cooling systems
- Regular third-party security audits
- Automatic failover and disaster recovery
- DDoS protection and mitigation
Application Security
We implement multiple layers of application security:
- Regular penetration testing by third-party security firms
- Automated vulnerability scanning
- Secure software development lifecycle (SDLC)
- Code review requirements for all changes
- Web application firewall (WAF) protection
Data Protection
Your data is protected through:
- Automatic daily backups with point-in-time recovery
- Geographic redundancy across multiple regions
- Data isolation between customer accounts
- Secure data deletion upon account termination
- Regular backup restoration testing
Employee Security
All FreightAI employees undergo background checks and security training. Access to customer data is strictly limited to those who need it to perform their job functions, and all access is logged and audited.
Reporting Security Issues
If you discover a security vulnerability, please report it to security@freightai.us. We take all reports seriously and will respond promptly.