Security Practices
Property data is sensitive. We've built Welcome with security at its core, protecting resident information, documents, and communications with industry-leading practices.
How We Protect Your Data
Encryption at Rest & Transit
All data is encrypted using AES-256 at rest and TLS 1.3 in transit.
Role-Based Access Control
Granular permissions ensure users only access data relevant to their role.
Multi-Factor Authentication
Enable MFA for added account security with authenticator apps or email.
Secure Infrastructure
Hosted on SOC 2 compliant cloud infrastructure with 99.9% uptime.
Audit Logging
Comprehensive activity logs track all system access and changes.
Incident Response
24/7 monitoring with rapid incident response and immediate notification.
What We Protect
- Resident Personal Information: Names, contact details, and identification documents are encrypted and access-controlled.
- Financial Data: Payment information is handled by PCI-compliant processors. We never store full card numbers.
- Lease Documents: Sensitive legal documents are stored with encryption and audit trails.
- Property Access Information: Key codes, access schedules, and entry logs are protected with strict access controls.
- Communications: All messages between managers and residents are encrypted in transit and at rest.
Compliance & Certifications
Data Security Measures
- All data encrypted using AES-256 at rest
- All connections protected with TLS 1.3
- Regular security audits and vulnerability assessments
- Role-based access controls limit data visibility
- Multi-factor authentication available for all accounts
- Automatic backups with encrypted storage
Responsible Disclosure
Found a security vulnerability? We appreciate responsible disclosure and will work with security researchers to address issues promptly. Please report vulnerabilities to security@getwelcome.co.
Contact Us
If you have questions about our security practices:
- Security: security@getwelcome.co
- Privacy: Privacy Policy
- Support: Contact Form