Security & Privacy

Your data security and privacy are our top priorities

Our Commitment

At ConductorIQ, we understand that you're trusting us with sensitive information about your properties, assets, and financial documents. We take this responsibility seriously and have implemented industry-leading security measures to protect your data.

Our platform is built with security-first principles from the ground up. Every feature, every line of code, and every integration is designed with your privacy and data protection in mind.

Security Features

AES-256 Encryption

Military-grade encryption for all sensitive data at rest and in transit.

Row-Level Security

Multi-tenant architecture with complete data isolation between organizations.

SOC 2 Type II

Compliance in progress to meet industry-leading security standards.

OAuth 2.0

Secure authentication and authorization for all integrations.

Encrypted Storage

AWS S3 with encryption for all documents and files.

RBAC

Role-based access control for granular permission management.

Data Protection

Encryption

All sensitive data is encrypted using AES-256 encryption, the same standard used by banks and government agencies. This includes:

  • Financial documents and receipts
  • Gift card redemption codes
  • OAuth refresh tokens
  • Personal information

Data Isolation

Our multi-tenant architecture ensures complete separation of data between organizations:

  • Row-level security in PostgreSQL database
  • Organization-scoped queries at the database level
  • No cross-organization data access
  • Independent backups per organization

Access Control

Granular role-based access control (RBAC) ensures users only see what they're authorized to access:

  • Owner, Admin, Manager, and Tenant roles
  • Property-level permissions
  • Feature-level access control
  • Audit logs for all actions

Privacy Commitment

We never sell your data. Your information is yours, and we will never share it with third parties for marketing purposes.

You own your data. Export your data at any time in standard formats. Delete your account and all associated data whenever you choose.

Transparent practices. We're clear about what data we collect, why we collect it, and how we use it.

GDPR and CCPA compliant. We respect data privacy regulations and give you control over your information.

Compliance & Certifications

🔒

SOC 2 Type II

In Progress

🌐

GDPR & CCPA

Compliant