Start Free Trial

TradepilotUSA Business Operations Suite

Security — How TradePilot Protects Your Data

Your business data, customer records, and financial information are protected at every layer. Here's exactly how TradePilot handles security.

Start Free TrialTalk To Sales
Secure cloud accessModular setupBuilt for operations

Data Security & Privacy

Your Business Data Is Protected at Every Layer

TradePilot handles sensitive business data — leads, customer records, invoices, receipts, and financial information. We take that responsibility seriously. Below is a clear, honest explanation of how we protect your data.

Encrypted Data in Transit

All data transmitted between your browser and TradePilot is protected with HTTPS and TLS encryption. Your credentials, business records, and customer data are never sent in plain text.

Encrypted Data at Rest

Your business data is stored on encrypted cloud infrastructure. Database backups are encrypted and stored securely. We use Supabase's enterprise-grade Postgres infrastructure with built-in encryption.

Role-Based Access Control

TradePilot uses row-level security and application-level role controls. Admins, team members, partners, and contractors each see only the data their role permits. Access is enforced at the database level.

Authenticated Access Only

Every TradePilot account requires email verification before access is granted. Session tokens expire automatically. Password recovery is handled through verified email confirmation flows.

Stripe-Secured Payments

All payment processing is handled by Stripe, a PCI-DSS Level 1 certified payment processor. TradePilot never stores, transmits, or has access to your full credit card numbers.

No Third-Party Data Selling

TradePilot does not sell, rent, or share your business data with third parties for advertising or marketing purposes. Your data is yours. We use it only to operate the platform you've subscribed to.

Isolated Account Data

Every TradePilot company account is fully isolated. Your leads, customers, invoices, and partner data are not accessible to other TradePilot accounts. Multi-tenant isolation is enforced at every layer.

Security Contact

If you have a security concern, discover a vulnerability, or need to report a data issue, contact us directly at security@tradepilotusa.com. We respond to security inquiries within 1 business day.

What TradePilot Does Not Do

Transparency matters. Here's what you can count on us not to do.

We do not store credit card numbers.
We do not sell your business data to advertisers.
We do not share your customer list with third parties.
We do not retain data after account deletion (upon request).
We do not allow cross-account data access.
We do not use your data to train AI models without consent.

Infrastructure

TradePilot is built on Supabase (Postgres with Row Level Security), hosted on Vercel (enterprise-grade edge infrastructure), and uses Stripe for all payment processing.

These are production-grade, enterprise infrastructure providers used by thousands of software companies worldwide. We chose them specifically for their security track record, uptime reliability, and compliance posture.

A Note on Certifications

TradePilot is a growing software platform. We currently do not hold formal SOC 2, HIPAA, or PCI-DSS certifications at the application level. We use Stripe (PCI-DSS Level 1) for payments and Supabase (SOC 2 Type II) for database infrastructure. If your business has specific compliance requirements, please contact us to discuss your needs before subscribing.

Security Questions?

If you have a security concern or compliance question, reach out directly. We respond to every security inquiry.

security@tradepilotusa.comContact Form

Also see our Privacy Policy and Terms of Service