Security & Trust

Security & Trust

Conterminal is the shared operating layer for container logistics, so your shipment data, tenant boundaries, and access controls are load-bearing infrastructure. Here is how the platform is built to protect them, stated plainly and without overclaiming.

How we protect your data

The principles under the platform.

Trusted managed infrastructure

The core application and database use managed cloud services: PostgreSQL on Supabase, application hosting on Vercel, and edge and realtime services on Cloudflare. Automated provider connections run on an isolated dedicated production host with controlled deployment and monitoring.

Tenant isolation enforced in the database

The platform is multi-tenant, and isolation is enforced where it counts: in the database, through row-level security. People can access records their organization owns or they are explicitly authorized to share. Authorization is checked again at protected server boundaries.

Passwordless authentication

Sign-in uses managed magic-link authentication. It removes a reusable application password from the flow and ties access to the verified email account; protecting that email account remains part of the security boundary.

Least privilege by construction

Elevated, service-role database access is server-side only. Browsers and clients never hold elevated credentials, so a compromised client can't reach past the access it was granted. The powerful keys stay on the server where they belong.

Verification-first engineering

The same ethos that powers the ETA trust ladder runs through the whole platform: data is reconciled and verified, not trusted blindly. Releases move through gated checks with monitored rollback paths, so a bad change can be withdrawn cleanly.

Your data is yours

Data ownership, retention, and export expectations are documented during early-access onboarding. We intend the value to come from the live, reconciled operating record—not from ambiguous lock-in—and put the agreed exit path in writing.

Where we are

Where we are: honest early-access posture

Conterminal is in early access. The architecture above is real and in production today, but formal certifications are not something we claim yet. SOC 2 and comparable third-party audits are on the roadmap as the platform moves toward general availability, and we won't badge them until they're earned. If you're a security or procurement reviewer who needs current specifics before you can move forward, reach out and we'll walk you through our architecture and where each control stands today.

Have a security or procurement question not answered here? See the Security & data section of our FAQ, or contact us directly and a reviewer will get current architecture specifics.

Get started

Built to earn your trust.

Have a security or procurement question? We're glad to walk through the details.