Security

Security You Can Trust

Your data security is our top priority. We use industry-leading practices to protect your information and earn your trust every day.

SOC 2 Type II

Security, availability, and confidentiality

GDPR

EU data protection compliance

CCPA

California consumer privacy

HIPAA Ready

Available for Enterprise plans

Our Security Practices

Comprehensive security measures to protect your data at every level.

All data is encrypted using AES-256 at rest and TLS 1.3 in transit. Your email content and tracking data are always protected.

We have completed SOC 2 Type II certification, demonstrating our commitment to security, availability, and confidentiality controls.

We comply with GDPR requirements including data minimization, right to access, right to deletion, and data processing agreements.

Protect your account with 2FA using authenticator apps or SMS. Available on all plans at no extra cost.

InboxPilot processes tracking metadata only. We never read, store, or analyze the content of your emails. Period.

Hosted on SOC 2 certified cloud infrastructure with redundant systems, automated backups, and 99.9% uptime SLA.

We collect only the data necessary to provide our service. No email content, no message bodies, no attachment contents.

We conduct annual third-party penetration tests and continuous vulnerability scanning to identify and fix security issues.

We maintain a documented incident response plan and will notify affected users within 72 hours of any data breach.

We are happy to answer any security questions or provide our SOC 2 report upon request.