FreightConnect

Security / Pii Encryption

PII & Encryption

How we handle personally identifiable information (PII) and protect it with encryption.

PII We Collect

Broker/User PII:

  • Name, email, phone
  • Company name, MC number
  • Billing address
  • Bank account info (for settlements)
  • IP address, session cookies

Shipper PII:

  • Company name, contact email/phone
  • Pickup/delivery address
  • Shipper contact person (sometimes)

Carrier PII:

  • Company name, DOT/MC numbers
  • Contact email/phone
  • Owner/operator name (for KYC)
  • Insurance contact info

Driver PII (rarely collected):

  • Name (from POD signature)
  • Phone (if driver messages you)
  • We DON'T store: SSN, license number, address, date of birth

PII Protection

Data at Rest (Encrypted)

Sensitive fields are encrypted:

  • Bank account numbers
  • Payment card tokens (Stripe handles this)
  • Social security numbers (if collected during compliance checks)
  • Insurance policy numbers

Encryption method: AES-256-GCM

Key management:

  • Encryption keys stored in AWS Secrets Manager
  • Keys rotated quarterly
  • Keys are never logged or exposed

Data in Transit (Encrypted)

All data moving between your browser and our servers is encrypted:

  • Protocol: TLS 1.2+ (https://)
  • Cipher suites: modern, strong algorithms
  • Certificate: DigiCert, renewed annually
  • HSTS: enabled (forces https://)

Passwords

Passwords are:

  • Hashed: bcrypt algorithm (one-way)
  • Salted: random salt per password (prevents rainbow tables)
  • Never stored: we never store plaintext passwords
  • Never logged: passwords never appear in logs

Even our team can't see your password. If you forget it, click "Reset Password."

Multi-Factor Authentication (MFA)

Highly recommended for Admins:

  • Time-based one-time password (TOTP) — Google Authenticator, Authy, etc.
  • Backup codes — use if you lose your authenticator
  • WebAuthn — hardware security keys (coming Q2 2026)

PII Handling by Role

Admins — can see all PII (email, phone, bank account, owner names)

Brokers — see shipper/carrier contact info they work with; don't see other brokers' PII

Dispatchers — see only assigned loads (shipper/carrier info visible on those loads)

Viewers — see no PII (only summary reports)

Go to SettingsPermissions to restrict PII visibility further if needed.

PII Redaction in Exports

When you export data:

  • Shipper/carrier names: included (you own this data)
  • Contact email/phone: included (your business data)
  • Driver names: redacted (e.g., "Driver 123")
  • Personal phone numbers: redacted (only company numbers)
  • Bank account numbers: last 4 digits only

This prevents accidental data leaks when sharing reports.

Third-Party PII Access

Only if you enable integration:

  • Accounting software (QuickBooks, Xero) — sees shipper/carrier names, amounts (no personal details)
  • ELD telematics (Samsara, Motive) — sees driver location, vehicle status (no personal info)
  • Email delivery (SendGrid) — sees email addresses you send to (standard for email)

All third parties sign Data Processing Agreements (DPAs) committing to data protection.

GDPR & CCPA

GDPR (European residents)

If you're in the EU or process EU citizen data:

  • You're the "data controller"
  • We're the "data processor"
  • We sign a Data Processing Agreement (DPA)
  • You must have lawful basis for collecting data (consent, contract, etc.)
  • You have "right to be forgotten" (we delete data on request within 30 days)

CCPA (California residents)

If you're in California or process CA resident data:

  • Opt-out rights for data sale (we don't sell data, so this is moot)
  • Disclosure of data practices (see Privacy Policy)
  • Right to deletion (available in Settings)

Request Your Data

To see what PII we have on you:

  1. Go to SettingsPrivacyDownload My Data
  2. We email you a JSON file with everything we store
  3. Takes 5-7 business days (per legal requirements)

Includes: account info, loads, messages, audit logs, etc.

Delete Your Data

To delete all your PII:

  1. Go to SettingsAccountDelete Account
  2. You're prompted to download your data first (optional)
  3. We delete all data within 24 hours
  4. Backups (which may contain your data) are deleted within 30 days

After deletion, data is unrecoverable.

Data Breach Scenario

If an attacker gains unauthorized access to PII:

  1. We detect breach (within 24 hours)
  2. We notify you immediately (phone + email)
  3. We isolate affected systems
  4. We investigate and publish post-mortem
  5. We offer identity theft monitoring if needed
  6. We cooperate with law enforcement

We carry cyber liability insurance ($5M coverage).

Encryption Key Recovery

If we lose encryption keys (very rare):

  • Data is permanently unrecoverable
  • We have key redundancy across multiple secure locations to prevent this
  • Keys are backed up in a vault-like system (AWS CloudHSM)
  • We test key recovery quarterly

Next Steps

Last updated: April 2026