Security

Your clients trust you with their data. We don't take that lightly.

Mortgage, real estate, solar, and insurance teams handle sensitive customer information every day. Here's exactly how we keep it protected, in plain language.

TLS in transitEncrypted at restMFA + RBACDaily backupsUS data residency

How it works

Six things we do so you don't have to worry

Encrypted in transit

Every connection uses HTTPS with TLS. Data moving between the browser and our servers is encrypted, so it can't be intercepted or tampered with.

Encrypted at rest

Database storage, backups, and file attachments are encrypted at rest with industry-standard encryption, so your data is protected even in storage.

Access controls

Role-based access decides who sees what. Multi-factor authentication adds a second layer of protection to every account.

Regular backups

Automated daily backups are stored in geographically separate locations and tested for integrity, so your data is recoverable.

Secure infrastructure

We run on secure cloud infrastructure with network isolation, firewalls, and continuous monitoring from providers that maintain rigorous standards.

Responsible disclosure

Found an issue? Email security@chosencrm.com and we'll investigate and respond within 48 hours. We work with researchers, not against them.

FAQ

The questions security teams ask

Your data is stored on secure cloud infrastructure with servers located in the United States. All data is encrypted at rest and in transit.

Yes. You can export your contacts, deals, documents, and activity history at any time. If you cancel, you have 30 days to export before data is permanently deleted.

We do not sell your data. We work with a limited set of service providers (hosting, email delivery, payment processing) who only access data necessary to perform their service. See our Privacy Policy for details.

We have an incident response plan covering detection, containment, investigation, and notification. If an incident affects your data, we notify you promptly with details and remediation steps.

SSO is on our roadmap. Reserve early access and tell us if SSO is a requirement so we can prioritize it for your team.

Email security@chosencrm.com with a description, steps to reproduce, and supporting evidence. We acknowledge within 48 hours and work with you to resolve it.

Have a security requirement we should know about?

Tell us what your team or compliance officer needs. We'd rather hear it now than after you've signed.

Reserve Early AccessEmail Security