Access is on a need-to-know basis
Only members of our team who need access to customer data (for support, onboarding, or technical reasons) are granted access. Everyone is trained on data security and privacy as part of their onboarding, and we refresh that training regularly.
We use strict access controls and keep a record of who accessed what, and when.
Every action is logged
We track and log access to systems and data, so we can see how our tools are being used and spot anything unusual. These logs help us audit activity and keep your data safe.
No unnecessary access for testing
We keep testing environments separate from live customer data. This means your data is not used for development or testing purposes, which reduces risk.
No third-party access without your say-so
We don’t share your data with other companies unless:
You’ve agreed to it (e.g. through an integration or partnership)
We’re legally required to
When we do work with third parties (like SMS or email providers), we make sure they meet our standards and sign proper data processing agreements.