
Third-party security certification
Independent AICPA recognized CPA firm certifies customer data management at HouseCanary, Inc. as SOC 2 Type II compliant
Third-party security auditing
Independent external auditors regularly conduct penetration testing to check our site for vulnerabilities.
Security practices
In transit and at rest, your data is encrypted using 256-bit or higher encryption. HouseCanary enforces a separation of duties, so access to systems is restricted to authorized personnel only as needed in connection with their role.
Incident response
In the event that personal information you provide to us is compromised as a result of a security breach, we will take reasonable steps as appropriate to investigate the situation, notify you, and comply with any applicable laws and regulations.
All hands on deck for security
Internal security policies, dedication to SOC standards, and a clean desk policy ensure that physical workspaces and equipment are secured at all times. HouseCanary completes background investigations on all critical employees, as designated by SOC requirements, and certain personnel involved in the production and delivery of Agile Suite tools.