KeyBoltSecurity
Security at KeyBolt
Your data is protected by enterprise-grade security.
Data Encryption
- All data encrypted at rest (AES-256) and in transit (TLS 1.2+)
- Key codes, bitting data, and safe combinations protected by database encryption at rest and row-level security
- Database hosted on AWS infrastructure via Supabase
Access Control
- Row-level security isolates every shop’s data at the database level
- Role-based permissions (owner, tech, dispatcher, viewer)
- Two-factor authentication (TOTP) support
- Configurable session timeouts and login lockout
Audit & Compliance
- Every action logged in an immutable audit trail
- Communication logs track all emails and SMS sent
- Webhook event deduplication prevents duplicate processing
Payment Security
- Stripe handles all payment processing (PCI DSS Level 1 compliant)
- We never store credit card numbers
- Each shop gets their own isolated Stripe Connect account
Infrastructure
- Hosted on Vercel (edge network) + Supabase (AWS)
- Automatic backups and disaster recovery
- Rate limiting on all API endpoints
- CAPTCHA protection on signup