Security

Last updated: June 14, 2026

At ManageForMe, protecting your property data, tenant information, and business operations is a top priority. This page outlines our approach to security and the measures we take to keep your data safe.

Infrastructure Security

• Cloud Hosting: Our platform is hosted on enterprise-grade cloud infrastructure with SOC 2 compliant data centers.
• Encryption in Transit: All data transmitted between your devices and our servers is encrypted using TLS 1.2 or higher.
• Encryption at Rest: All stored data, including property records, tenant information, and uploaded media, is encrypted using AES-256 encryption.
• Network Security: We employ firewalls, intrusion detection systems, and network segmentation to protect against unauthorized access.
• Redundancy: Data is replicated across multiple availability zones to ensure high availability and disaster recovery.

Application Security

• Authentication: We support strong password requirements and multi-factor authentication (MFA) to protect account access.
• Role-Based Access Control: Granular permissions ensure that users only access the data and features relevant to their role (property manager, owner, tenant, vendor).
• Session Management: Sessions are securely managed with automatic timeouts and the ability to revoke active sessions.
• Input Validation: All user inputs are validated and sanitized to prevent injection attacks and cross-site scripting (XSS).
• API Security: API endpoints are authenticated, rate-limited, and monitored for abuse.

Data Protection

• Data Isolation: Each customer's data is logically isolated and cannot be accessed by other customers.
• Backups: Automated daily backups with point-in-time recovery ensure your data can be restored in the event of an incident.
• Data Retention: We retain data only as long as necessary to provide our services. Upon account termination, data is available for export for 30 days before secure deletion.
• Secure Deletion: When data is deleted, it is permanently removed from all primary and backup systems within the retention period.

AI and Privacy

• Data Usage: Your property data is used solely to provide and improve the Services for your account. We do not sell your data to third parties.
• Model Training: AI models are trained on aggregated, anonymized data. Your specific property data, tenant details, and financial records are never used to train models shared with other customers.
• Human Review: Sensitive operations (emergency classifications, high-value work orders) include human review checkpoints that you can configure.

Operational Security

• Employee Access: Access to production systems is restricted to authorized personnel on a need-to-know basis, with all access logged and audited.
• Background Checks: All employees with access to customer data undergo background checks.
• Security Training: Our team receives regular security awareness training covering phishing, social engineering, and data handling best practices.
• Vendor Assessment: Third-party vendors and service providers are evaluated for security compliance before integration.

Monitoring and Incident Response

• 24/7 Monitoring: Our systems are continuously monitored for anomalies, performance issues, and security threats.
• Logging and Auditing: Comprehensive audit logs track all system access, data changes, and administrative actions.
• Incident Response: We maintain a documented incident response plan. In the event of a security incident affecting your data, we will notify you within 72 hours with details of the incident and remediation steps.

Compliance

• Fair Housing: Our AI systems are designed and regularly audited to comply with fair housing laws and prevent discriminatory outcomes.
• Data Privacy: We comply with applicable data privacy regulations, including providing data access, portability, and deletion rights to users.
• Financial Data: Rent collection and financial data is processed through PCI DSS compliant payment processors.

Reporting a Vulnerability

If you discover a security vulnerability in our platform, we encourage responsible disclosure. Please report it to:

Email: contact@manageforme.ai

We take all reports seriously and will respond within 48 hours. We ask that you do not publicly disclose the vulnerability until we have had an opportunity to investigate and address it.

Questions

If you have questions about our security practices or would like additional information, please contact us at:

ManageForMe
Email: contact@manageforme.ai