Security Overview

Last Updated: March 2, 2026

Our Security Commitment

We take security seriously. This document outlines our security practices for SquadUp.

Security Principles

Defense in Depth

We implement reasonable measures for security:

Network security (encryption in transit where applicable)
Authentication and access controls
Secure software development practices

Privacy by Design

Minimal data collection
Data minimization practices
User control over personal data where applicable

Technical Safeguards

Data Protection

We implement measures including:

Encryption: Encryption of data in transit where applicable
Authentication: Secure authentication via OAuth (Google, Apple)
Access controls: Access controls for internal systems

Infrastructure

We use cloud hosting with reputable providers and maintain:

Standard backup practices where applicable
Incident response capabilities
Vendor security review

What We Protect

Account Security

Authentication credentials
Session management
Account recovery processes

User Content

Personal data you provide
Task and habit information
Journal entries

Security Limitations

No Absolute Security

While we implement reasonable safeguards:

No method of electronic storage or transmission is 100% secure
We cannot guarantee absolute security
Security threats evolve constantly

User Responsibilities

You play a role in security by:

Using strong, unique passwords
Keeping your device secure
Not sharing account credentials
Reporting suspicious activity

Vulnerability Management

Reporting Security Issues

If you discover a security vulnerability:

Email: security@getsquadup.app
Include detailed description
Do not disclose publicly until addressed

Our Commitment

Acknowledge reported issues where appropriate
Investigate in a timely manner
Work to address vulnerabilities

Third-Party Security

We use third-party services for:

Backend infrastructure
Push notifications
Authentication
Analytics (limited, anonymized)

Each provider maintains their own security practices. We review their security posture where appropriate.

Compliance

Regulatory Compliance

We work to comply with applicable data protection regulations, including:

GDPR (for EU users)
CCPA (for California users)
Apple App Store requirements

Data Breach Response

In the event of a security incident affecting personal data:

Assessment of scope and impact
Containment measures where applicable
User notification as required by law
Regulatory reporting as required
Remediation and prevention

Contact

For security-related inquiries:

Security team: security@getsquadup.app
General support: support@mavarosystems.com

Updates

This security overview may be updated periodically. The "Last Updated" date reflects the most recent changes.

Our Security Commitment​

Security Principles​

Defense in Depth​

Privacy by Design​

Technical Safeguards​

Data Protection​

Infrastructure​

What We Protect​

Account Security​

User Content​

Security Limitations​

No Absolute Security​

User Responsibilities​

Vulnerability Management​

Reporting Security Issues​

Our Commitment​

Third-Party Security​

Compliance​

Regulatory Compliance​

Data Breach Response​

Contact​

Updates​