Security
Your data is protected
We built CivilStream with security-first architecture to protect your warranty documents and business data.
Tenant Isolation
Each company gets a dedicated database and storage. Your data is never mixed with other customers.
Encryption
All data is encrypted at rest (AES-256) and in transit (TLS 1.3). Your documents are protected end-to-end.
Access Control
Role-based permissions ensure team members only see what they need. Full audit logging tracks all actions.
Uptime Monitoring
24/7 infrastructure monitoring with automated alerts. Multi-region deployment for high availability.
AWS Infrastructure
Hosted on AWS with SOC 2 Type II compliant infrastructure. Regular security audits and penetration testing.
Data Retention
You control your data. Export anytime, request deletion when needed. We follow GDPR-aligned practices.
Infrastructure Details
CivilStream runs on enterprise-grade cloud infrastructure designed for security and reliability:
- Compute: AWS ECS with private subnets, no public exposure
- Database: Amazon RDS with automated backups and encryption
- Storage: Amazon S3 with server-side encryption and versioning
- Network: AWS WAF for threat protection, VPC isolation
- Authentication: AWS Cognito with MFA support
Data Handling
We take your warranty documents and business data seriously:
- Documents are processed in isolated environments
- AI extraction happens within your tenant boundary
- No data is used to train AI models without explicit consent
- Automated data backup with point-in-time recovery
- Complete audit trail of all document access and modifications
Compliance
We maintain security practices aligned with industry standards:
- SOC 2 Type II compliant infrastructure (AWS)
- GDPR-aligned data handling practices
- Regular third-party security assessments
- Employee security training and background checks