ForwardToSafety
Security First

Your Data, Protected

We implement commonly accepted business security practices for handling email data. Security is a priority, and we continuously work to protect your information.

Note: While we take reasonable precautions to secure your data, no system can guarantee 100% security. We cannot guarantee that our service will detect all threats or be free from vulnerabilities.

SOC 2 in progress
GDPR Compliant
No data sold. Ever.

Encryption in Transit

All data transmitted to and from ForwardToSafety is encrypted using TLS 1.3. Your emails and analysis results are protected from interception.

Secure Infrastructure

Our servers are hosted with reputable providers that maintain physical security controls and reliable uptime.

Access Controls

Access to customer data is limited to authorized personnel on a need-to-know basis.

Secure Payments

Payment processing is handled by Authorize.net, a PCI DSS Level 1 certified provider. We never store your credit card details.

Email Security

We implement comprehensive email security measures:

  • SPF (Sender Policy Framework): Validates that emails come from authorized servers
  • DKIM (DomainKeys Identified Mail): Cryptographically signs our outgoing emails
  • DMARC: Provides instructions for handling emails that fail authentication
  • DNSSEC: Protects against DNS spoofing attacks

Your Data, Your Control

We handle your email data responsibly:

  • Minimal Retention: Email content is retained only as long as necessary for analysis and your reference
  • Automatic Deletion: Detailed email content is automatically purged after 90 days
  • No Selling: We never sell or share your email content with third parties for marketing
  • Attachment Sandboxing: Suspicious attachments are analyzed in isolated environments

Analysis Security

Our 6-tier analysis system is designed with security in mind:

  • Link Scanning: URLs are analyzed without exposing your network to malicious sites
  • Safe Browsing: We check links against multiple threat databases without visiting them from your device
  • Attachment Analysis: Files are examined in secure sandboxes to detect malware
  • AI Analysis: Powered by Anthropic's Claude with strict privacy controls

Quality Assurance

To maintain and improve the accuracy of our analysis, we perform random manual sampling of verdict reports. This quality assurance process helps us identify areas for improvement and ensure our detection systems are performing as expected.

Incident Response

In the unlikely event of a security incident, we have established procedures for rapid response, containment, investigation, and notification. We will notify affected users promptly in accordance with applicable laws and regulations.

Responsible Disclosure

If you discover a security vulnerability in ForwardToSafety, we encourage responsible disclosure. Please report security issues to security@forwardtosafety.com. We commit to:

  • Acknowledging your report within 48 hours
  • Providing regular updates on our investigation
  • Not pursuing legal action for good-faith security research
  • Crediting researchers who help improve our security (with permission)

Questions?

If you have questions about our security practices, please contact us at:
Email: security@forwardtosafety.com