DispatchShield
Security

Security is the product.

DispatchShield is built so every approval, signature, photo, and dollar is defensible. Here's how we protect your data — and your business.

Trust CenterContact Security
Overview

Defense in depth, end to end

Encryption

In transit (TLS) and at rest. Sensitive fields are isolated and access-logged.

Identity

Modern auth, social sign-in, password and session protection by default.

Row-level security

Every record is scoped to the company that owns it. Cross-tenant access is structurally impossible.

Edge runtime

Server logic runs on a hardened serverless edge — no long-lived servers to compromise.

Data protection

Your data is yours

You own your data. We process it solely to operate and improve the service you signed up for.

  • Granular role-based access
  • Strict tenant isolation enforced by the database
  • Backups and point-in-time recovery
Access policy
policy "tenant_isolation"
  USING (company_id = current_company_id())
  WITH CHECK (company_id = current_company_id())
Audit trail

Every change leaves a trace

Approvals, signatures, status changes, and admin actions are recorded with user, device, IP, and timestamp.

  • Tamper-evident event log
  • Customer approval forensics
  • Exportable for legal and finance review
Customer approval signed · 10:42 · 71.4.221.55
Invoice sent · 10:55 · admin@acme.com
Payment received · 11:18 · Stripe · $483.00
Evidence packet exported · 11:21 · admin@acme.com
Customer approvals

Consent, captured properly

Pre-job authorization and final invoice approval are captured with a cryptographic signature, device fingerprint, and full context.

  • Signed terms acceptance
  • IP, timezone, and user-agent capture
  • Bound to a specific job and invoice
Signed by John Smith
June 24, 2026 · 10:42 AM PDT
Verified ✓
Platform integrity

Operational practices that match the architecture

Continuous scanning

Automated scanners and code reviews run on every change.

Least privilege

Production access is tightly scoped and reviewed.

Incident response

Defined runbooks, on-call rotation, and customer notification.

FAQ

Frequently asked questions

Where is my data hosted?+

Customer data is hosted with a regulated cloud provider in the United States. Backups are encrypted.

Who can see my company's data?+

Only users you invite, scoped to the role you give them. Cross-company access is blocked at the database layer by row-level security.

Can I export my data?+

Yes. Invoices, evidence packets, and customer records are exportable from the application at any time.

How do you handle vulnerability reports?+

Send reports to security@getdispatchshield.com. We acknowledge within one business day and prioritize triage.

Is DispatchShield SOC 2 / ISO certified?+

DispatchShield is built on a security-focused architecture. Specific certifications and attestations will be listed on the Trust Center as they are completed.

Run on a platform that takes security seriously

See the full Trust Center, or talk to our team.

Trust Center Contact us