Rankability Trust Center
Security, privacy, and compliance are foundational to how we build and operate Rankability. This trust center provides transparency into our security practices, data handling, and the controls we have in place to protect your information.
Quick Facts
Encryption in transit
TLS 1.2+ on all connections
Encryption at rest
AES-256-GCM for OAuth tokens; SHA-256 hashing for API keys
Authentication provider
Clerk (SOC 2 Type II certified)
Payment processor
Stripe (PCI DSS Level 1, SOC 2 Type II)
Multi-tenant isolation
Organization-scoped data with session-derived access control
Data retention
Automated policies with defined retention periods per data type
Audit logging
All administrative and authentication events logged with 7-year retention
Incident response
Defined severity levels, escalation matrix, and response procedures
What We Cover
Security Overview
How we protect your data with encryption, access controls, and monitoring.
Data Handling & Privacy
What data we collect, how we store it, and your rights.
Infrastructure & Availability
Our hosting, uptime, backups, and disaster recovery.
Authentication & Access Control
How we secure user accounts, API keys, and integrations.
Subprocessors
Third-party services that process data on our behalf.
Compliance
Our SOC 2 journey, policies, and audit readiness.
Incident Response
How we detect, respond to, and communicate about security events.
Security Inquiries
For security inquiries, to request our SOC 2 report, or to report a vulnerability, reach out to our security team. We respond within one business day.
[email protected]