Trust
Security
Tariffloop handles sensitive trade data — invoices, supplier records, and entry data. Here's how we protect it.
Encryption
Data is encrypted at rest with AES-256 and in transit with TLS 1.3. Secrets and credentials are stored in managed key vaults, never in application code.
Access & isolation
Access to customer data is scoped to the minimum needed to operate the service, logged, and restricted by role. Each customer's data is logically isolated. Tariffloop reads the documents you forward or connect — it does not connect directly to CBP or your broker's systems.
Data handling
- We never sell or rent your data.
- We do not use your data to train public AI models.
- Data is used only to provide and improve your compliance results.
- You can request export or deletion of your data at any time.
Reporting a vulnerability
Found a security issue? Email security@tariffloop.com. We acknowledge reports promptly and work with researchers in good faith.