Security | TrustOffice Data Protection
Legal

Security

We take the security of your data and the trust you place in TrustOffice seriously. This page explains, in plain language, how we protect your information and what you can expect from us.

Application and data security

Encrypted in transit

All connections to TrustOffice use HTTPS/TLS encryption. This helps ensure that data sent between your browser and our servers cannot be easily read or modified by third parties.

Access controls

Access to your account requires authenticated login. Internally, access to production systems and data is restricted to a small number of authorized personnel who need it to operate and improve the service.

Data separation

Governance data you enter (trust and entity profiles, governance tasks, minutes/decision records, distributions, compensation information, and structural maps) is logically separated by account. We design our data model so that one customer cannot access another customer's information.

Backups and continuity

We maintain regular backups of our databases and use reputable cloud infrastructure providers to help protect against data loss and to support service continuity.

Payment security

No card numbers stored by TrustOffice

We use a third-party payment processor (such as Stripe) to handle subscription payments. Your full payment card details are sent directly to the payment processor and are not stored on TrustOffice servers. The processor is responsible for PCI-DSS compliance and secure handling of card data.

Subscription and billing data

We store limited billing information (such as your chosen plan and subscription status) so we can manage your account and access, but we do not store full card numbers.

Operational and account security

Account protection

We encourage you to use a strong, unique password for your TrustOffice account and to keep your login details confidential. If you suspect any unauthorized access, contact us immediately so we can investigate and help secure your account.

Monitoring and logging

We maintain logs of key application events (such as sign-ins and important changes) to help detect unusual activity and support security reviews.

Staff practices

Team members with access to production systems are trained to handle data carefully and are bound by confidentiality obligations.

Your responsibilities

Security is a shared responsibility. You are responsible for:

  • Controlling who has access to your account and any shared login credentials.
  • Reviewing your account regularly for signs of unusual activity.
  • Complying with your own legal and governance obligations when entering and using trust and entity information inside TrustOffice.

Reporting a security issue

If you believe you have found a security vulnerability or see suspicious activity related to your account, please contact us as soon as possible:

AgenticTrust

agentictrust.app

security@trustoffice.app

Please include as much detail as you can so we can investigate quickly. We take all security reports seriously and will work with you to address any confirmed issues.

Ready to get started?

Start your subscription and experience TrustOffice's secure governance platform.

Subscribe Now