We value your privacy

    We use cookies to enhance your browsing experience, analyse site traffic, and provide personalised content. By clicking "Accept", you consent to our use of cookies.

    Read our Privacy Policy →
    Security

    Security at Crewie

    Your data security is our top priority. Learn how we protect your information.

    At Crewie, we understand that trust is earned through action. We've built security into every layer of our platform to ensure your data is protected, your privacy is respected, and your team can work with confidence.

    Data Encryption

    All data is encrypted both in transit and at rest using industry-standard encryption protocols:

    • TLS 1.3 for data in transit
    • AES-256 encryption for data at rest
    • Encrypted database backups
    • Secure key management systems

    Access Controls

    We implement strict access controls to ensure only authorized users can access your data:

    • Multi-factor authentication (MFA) support
    • Role-based access control (RBAC)
    • Single sign-on (SSO) integration
    • Session management and timeout policies
    • Audit logs of all access and changes

    Infrastructure Security

    Our infrastructure is built on secure, reliable cloud services:

    • Hosted on enterprise-grade cloud infrastructure
    • Regular security patches and updates
    • DDoS protection and rate limiting
    • Automated backups with point-in-time recovery
    • Geographic data redundancy

    Compliance & Standards

    We adhere to industry best practices and compliance standards:

    • GDPR compliant data handling
    • SOC 2 Type II certification (in progress)
    • CCPA compliance for California users
    • Regular third-party security audits
    • Penetration testing and vulnerability assessments

    Our Security Practices

    Security Team

    Our dedicated security team monitors threats 24/7 and responds to incidents promptly.

    Employee Training

    All employees undergo regular security training and follow strict data handling protocols.

    Incident Response

    We have a comprehensive incident response plan and will notify affected users within 72 hours of any data breach.

    Bug Bounty Program

    We work with security researchers through our responsible disclosure program to identify and fix vulnerabilities.

    Your Role in Security

    Security is a shared responsibility. Here's how you can help keep your account secure:

    • Use a strong, unique password for your Crewie account
    • Enable multi-factor authentication
    • Don't share your login credentials
    • Log out of shared or public devices
    • Report suspicious activity immediately
    • Keep your recovery information up to date

    Questions About Security?

    If you have security concerns or want to report a vulnerability, please contact our security team:

    Email: security@crewie.app

    For vulnerabilities: security-disclosure@crewie.app