DoorVault protects your most sensitive real estate financial data with multiple layers of encryption, strict access controls, and continuous monitoring.
From the moment your data enters DoorVault to how it's stored, accessed, and protected.
All data is encrypted at rest using AES-256 encryption. Every connection uses TLS 1.3. Sensitive data is encrypted with Fernet symmetric encryption before storage.
Sign in with passkeys (FIDO2/WebAuthn), Google, Apple, or email + password with TOTP two-factor authentication. Brute-force protection locks accounts after failed attempts.
Hosted on Railway (SOC 2 Type II compliant) with PostgreSQL managed databases. Documents stored on Cloudflare R2 with S3-compatible encryption.
Every sensitive action is logged with timestamps, IP addresses, and user context. Login attempts, data exports, and admin actions are tracked in an immutable audit trail.
Role-based access with household data isolation. Each user only sees their own data. Household members share data only when explicitly invited.
Real-time error tracking with Sentry captures exceptions before they impact users. Uptime monitoring ensures 99.9%+ availability with instant alerts.
Your financial data is protected by multiple encryption layers. We use industry-standard AES-256 for data at rest, TLS 1.3 for data in transit, and Fernet symmetric encryption for sensitive credentials.
Document files stored in Cloudflare R2 are encrypted server-side. Database backups are encrypted. Even our Knox AI pipeline processes data in memory and never persists raw text to third-party services.
We support the most secure authentication methods available today. Passkeys (FIDO2/WebAuthn) provide phishing-resistant passwordless login. Google and Apple SSO let you leverage their security infrastructure.
For password-based login, we enforce strong hashing (PBKDF2-SHA256 with salt), automatic lockout after failed attempts, and optional TOTP two-factor authentication with backup recovery codes.
Our Knox AI assistant uses Anthropic's Claude API to analyze your documents and transactions. Your data is processed but never stored by Anthropic, never used for model training, and never shared with third parties.
We implement prompt injection detection to prevent malicious documents from manipulating AI behavior. All AI outputs are validated and sanitized before being applied to your data.
Enterprise security certifications and world-class infrastructure.
SOC 2 Type II certified hosting with isolated containers and encrypted networking
Managed database with automatic backups, point-in-time recovery, and encrypted volumes
Global CDN with DDoS protection, WAF, and R2 object storage with encryption
Real-time error monitoring and performance tracking with instant security alerts
Transparency about how we handle your data.
Delete your account and all associated data at any time. When you delete data, it's permanently removed from our databases and storage.
We will never sell your data to third parties. Your financial information, documents, and property details are yours. We make money from subscriptions, not your data.
Export your complete data anytime. Properties, transactions, documents, tax reports. CSV, PDF, and Excel exports. Your data is never locked in.
Join investors who trust DoorVault to protect their most sensitive financial information.