Security at IntakeFlow

Your clients trust you with sensitive information. We take security seriously so you can too.

Encryption at rest & in transit

All data is encrypted using AES-256 at rest and TLS 1.3 in transit.

SOC 2-compliant infrastructure

Hosted on infrastructure that meets SOC 2 Type II compliance standards.

Audit logs

Every access and modification is logged with timestamps and user identifiers.

Role-based access control

Team members only see what they need. Granular permission controls.

Security checklist

Passwords hashed with bcrypt
Multi-factor authentication available
Session tokens rotated regularly
Document uploads scanned for malware
Regular penetration testing
Responsible disclosure program
GDPR and CCPA compliant
Data residency in US/EU available

Found a security vulnerability? Please disclose responsibly.

security@intakeflow.com