Security
Built for operational trust.
FreightSurf is designed with security at its core. Your inbox data, carrier information, and business operations are protected at every layer.
Gmail OAuth — Read-Only Access
FreightSurf connects to your Gmail inbox using Google's official OAuth 2.0 protocol. We request read-only access — FreightSurf can never send, modify, or delete your emails. You can revoke access at any time from your Google account settings.
- Read-only Gmail scope
- OAuth 2.0 standard
- No email modification
- Revocable at any time
Data Encryption
All data processed by FreightSurf is encrypted in transit using TLS 1.3 and encrypted at rest using AES-256. Carrier data, email content, and user information are all protected by industry-standard encryption.
- TLS 1.3 in transit
- AES-256 at rest
- Encrypted carrier data
- Encrypted user information
Infrastructure Security
FreightSurf is hosted on enterprise-grade cloud infrastructure with automatic failover, regular security audits, and continuous monitoring. We are actively working toward SOC 2 Type II certification.
- Enterprise cloud hosting
- Automatic failover
- Regular security audits
- SOC 2 Type II roadmap
Carrier Verification Security
FMCSA carrier data is sourced directly from official government databases. FreightSurf does not store or cache sensitive carrier financial information. All verification lookups are logged for audit purposes.
- Official FMCSA data source
- No sensitive financial storage
- Verification audit logs
- Data minimization principles
Questions about security?
Our team is happy to answer any security questions before you connect your inbox.
Contact Security Team