Security you can trust
Your sales data is sensitive. We treat it that way. Enterprise-grade security without the enterprise complexity.
How we protect your data
Encryption in Transit
All data transmitted to and from myday uses TLS 1.3 encryption. Your information is protected every step of the way.
Encryption at Rest
All data stored in our database is encrypted using AES-256, the same standard used by banks and government agencies.
Secure Authentication
Passwords are hashed using bcrypt. OAuth tokens for email integrations are encrypted before storage.
Role-Based Access Control
Granular permissions ensure team members only access what they need. Owner, Admin, Sales Rep, and Viewer roles available.
Row-Level Security
Database-level isolation ensures organizations can never access each other's data, even in the unlikely event of a bug.
Regular Backups
Automated daily backups with point-in-time recovery. Your data is never at risk of loss.
Infrastructure standards
SOC 2 Type II
Database & hosting infrastructure
Our infrastructure providers are independently audited
PCI DSS Level 1
Payment processing
Our payment provider handles all card data — we never store it
GDPR Compliant
Data handling
We follow EU data protection rules and offer a DPA
TLS 1.3 & AES-256
Encryption standards
All data encrypted in transit and at rest
Our data practices
- We never sell your data or use it for advertising
- Email content is only accessed to provide CRM functionality
- You can export all your data at any time via CSV
- Data is deleted within 30 days of account cancellation
- We comply with GDPR and respect data subject rights
- Security incidents are reported within 72 hours
Questions about security?
We're happy to discuss our security practices in detail. Contact us at support@mydaycrm.com