Your data sovereignty is our core design principle, not an afterthought.
Your carrier API keys never touch our servers. Credentials are encrypted and stored on your infrastructure, giving you full control and revocation capability.
All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Communication between services is mutually authenticated.
Internal systems follow zero-trust principles. Every request is authenticated and authorized. Role-based access control limits data exposure.
Every action is logged with immutable audit trails. Enterprise customers get full access to audit logs for compliance and governance needs.
Found a security vulnerability? We appreciate responsible disclosure. Please report issues to security@parceltrack.com and we'll respond within 48 hours.