Security & data
Broker-Aware exists to produce evidence that holds up. That only works if the evidence — and the way we handle your data — is sound. Here's how it works, in plain terms. If your security team needs more, get in touch.
How receipts are signed
Every vetting receipt is signed with an Ed25519 private key that lives only in our secrets store — never in the database, never in source. Each receipt records the key id it was signed with, so verification resolves the right public key even after a key rotation. The public keys are published so anyone can verify a signature independently.
Tamper-evidence (the chain)
Receipts are written to an append-only, per-organization ledger. Each receipt references the cryptographic hash of the one before it, forming a chain. A back-dated, edited, or deleted record breaks the chain — and the public verifier reports it. Receipts are never updated in place; a correction is issued as a new "override" receipt that points at the original.
Retention
Vetting receipts are retained for 7 years to cover the statute-of-limitations window for the claims they defend against. You can export any receipt as a PDF at any time so you hold your own copy independently of us.
Where the data comes from
Carrier data is computed from FMCSA's public datasets — operating authority and insurance status from Licensing & Insurance, safety measures and percentiles from the SMS methodology and MCMIS census. Each receipt records the source and the "as-of" date of the data it was built from, so the record reflects exactly what was known at the time of the check.
Your data
- Payments are processed by Stripe; we never see or store full card numbers.
- Data is encrypted in transit (TLS) and at rest by our managed hosting providers.
- The public receipt verifier exposes only non-private receipt fields — never your internal notes or policy details.
- We don't sell your data, and we don't use it to train anything.
- Account deletion removes your data on request (receipts you've already exported remain yours).
Availability
The API and dashboard run on managed, redundant infrastructure. Growth and Enterprise plans include an availability commitment and a named support contact; ask us for the current terms.
We're an early company and we'd rather tell you exactly what we do than wave a badge. We don't currently hold a SOC 2 report; if your procurement process requires one, tell us — it helps us prioritize. For a security review or DPA, reach us through your account or the login page.