Security
Security at SiteDNA.
We're building SiteDNA to handle the customer data, site photos, and contract details commercial landscape AMs deal with every day. Here's what we do today, and what's on the roadmap.
Current state
- Hosting
- AWS us-east-2, via Cloudflare.
- Encryption at rest
- AES-256.
- Encryption in transit
- TLS 1.3.
- Backups
- Daily, with 30-day point-in-time recovery.
- Authentication
- OAuth with Google and email-magic-link. SSO via SAML on Enterprise tier.
- Least-privilege access
- Role-based access control on every object. Branch managers see their branch; AMs see their book.
On the roadmap
- SOC 2 Type I report (in progress; expected Q3 2026)
- SOC 2 Type II (2027)
- Configurable data retention policies
- Customer-managed encryption keys (Enterprise tier)
Questions or concerns
Security questions, responsible-disclosure reports, and vendor security reviews: security@sitedna.ai. We respond within one business day.