Security

Your data is safe with us

SiteRevo is built with security at the core — from encrypted data storage to secure client sharing links.

Encrypted in transit and at rest

All data transmitted between your browser/app and SiteRevo servers is encrypted via TLS. Data at rest is encrypted using AES-256.

Secure authentication

User accounts are protected with hashed passwords. Multi-factor authentication is available for all accounts.

Reliable infrastructure

SiteRevo runs on modern cloud infrastructure with automated backups, redundancy, and regular security patching.

Token-based public links

Public shareable links use cryptographically secure tokens. Access is revoked automatically when documents are superseded.

Access controls

SiteRevo uses role-based access control (RBAC). Each user in your organization is assigned a role that determines what they can view and modify. Owner, admin, and field technician roles are available, with granular permission control per resource.

Each tenant's data is strictly isolated. No user from one organization can access data from another — all data access is enforced at the API level.

Sharing and public links

When you share a document via public link, SiteRevo generates a unique, cryptographically secure token. Recipients can view the document without creating an account. Tokens are rotated when documents are revised, and you can revoke access at any time from within the app.

Data retention and deletion

You own your data. If you cancel your account, you can request a full export before deletion. Data is deleted from our systems within 30 days of account closure. Backups are retained for up to 90 days before permanent deletion.

Responsible disclosure

If you discover a security vulnerability in SiteRevo, please contact us at security@siterevo.com. We review all reports and respond promptly.

Questions about security?

If you have specific security requirements or questions, reach out to our team.