Security First, Always

How we protect your family's sensitive information

End-to-End Encryption

Data at Rest

  • AES-256 encryption for all personal information
  • Encrypted database fields for names and DOBs
  • Separate encryption keys per data type

Data in Transit

  • TLS 1.3 for all API communications
  • Certificate pinning for mobile apps (coming soon)
  • Secure WebSocket connections for real-time updates

Authentication & Access Control

Password Security

  • • Bcrypt hashing with salt
  • • Minimum 8 characters
  • • Complexity requirements
  • • No password reuse

Session Management

  • • JWT tokens with expiration
  • • Secure HTTP-only cookies
  • • Automatic timeout
  • • Device tracking

Access Controls

  • • Role-based permissions
  • • API rate limiting
  • • IP allowlisting available
  • • Audit logging

Infrastructure Security

Secure Hosting

Our servers are hosted in SOC 2 compliant data centers with 24/7 monitoring, redundant power, and physical security controls.

Database Protection

PostgreSQL with row-level security, automated backups, point-in-time recovery, and geographic replication for disaster recovery.

Threat Detection

Automated security scanning, intrusion detection systems, and real-time alerting for suspicious activities.

Privacy by Design

Minimal Data Collection

We only collect what's absolutely necessary

What we collect:

  • • Names and birth dates for monitoring
  • • Contact info for alerts
  • • Minimal usage data for service improvement

What we DON'T collect:

  • • Social Security numbers
  • • Financial information (handled by Stripe)
  • • Unnecessary personal details
  • • Browsing history or tracking cookies

Compliance & Standards

Data Protection

  • • GDPR compliant data handling
  • • CCPA privacy rights respected
  • • Right to deletion honored
  • • Data portability supported

Industry Standards

  • • OWASP security guidelines
  • • PCI DSS for payment handling
  • • Regular security audits
  • • Vulnerability disclosure program

Report Security Issues

Found a security vulnerability? We appreciate responsible disclosure. Please report security issues to:

security@arrestalert.com

We typically respond within 24 hours and will work with you to understand and address the issue.

Your Security is Our Priority

We continuously invest in security infrastructure and practices to ensure your family's information remains private and protected. Have questions? We're here to help.

Contact Our Security Team