The Trust Grid
Bank-Grade Encryption
All data is encrypted in transit using TLS 1.2+ and at rest using AES-256. Your guest data and access credentials are cryptographically sealed from the moment they leave your PMS until they reach the lock.
Cloud-Native Defense
Our infrastructure operates on a Zero-Trust architecture. We utilize strict network segmentation, automated threat detection, and continuous vulnerability scanning to protect our perimeter 24/7.
Granular Permissions (RBAC)
We enforce strict Role-Based Access Control. You determine exactly who has access to what. Staff permissions can be granted, audited, and revoked instantly from the central dashboard.
High Availability
Security includes availability. Our distributed infrastructure ensures 99.9% uptime, with redundant failovers to ensure your guests can always open their doors, regardless of server load.
Compliance & Privacy
GDPR Compliant
We operate as a Data Processor, fully compliant with GDPR requirements. We process guest data solely to execute access, with strict retention policies and data sovereignty options for EU clients. We do not sell, rent, or monetize guest data.
ISO-Aligned Architecture
While we are currently in the process of formal accreditation, our platform was built from Day 1 in alignment with ISO 27001 information security standards. We employ the same controls, audits, and risk management frameworks used by enterprise banks.
Secure Offline Access
Offline does not mean insecure. Our proprietary mobile SDK utilizes distinct, rotating cryptographic keys for offline locks. This ensures that even without an internet connection, the handshake between the phone and the lock remains authenticated, encrypted, and spoof-proof.
In the event of a security incident at your property, you need answers immediately. Portal provides immutable Audit Logs of every API call, dashboard login, and door unlock event. You have a complete forensic trail at your fingertips, available in real-time.
Total Visibility
Security Research.
We value the work of the security community. We maintain an active Vulnerability Disclosure Programme to identify and resolve potential issues before they affect our users.
