Compliance & Security
How PerilBridge protects your data, respects your privacy, and maintains regulatory compliance across every state we operate in.
Security Posture
Encryption in Transit
All traffic to and from PerilBridge is encrypted via TLS 1.2+ (HTTPS). We enforce HSTS headers and do not serve any content over unencrypted HTTP.
Encryption at Rest
All uploaded documents, photos, and claim data are stored in AWS S3 with server-side encryption (AES-256). Database backups are encrypted at rest.
Access Controls
Internal access to customer data follows the principle of least privilege. API keys and secrets are stored in environment variables, never in source code.
Secure Uploads
File uploads use time-limited, pre-signed URLs that expire after use. Files are uploaded directly to encrypted cloud storage — they never pass through our application servers.
Data Privacy
We collect only the information necessary to support roofing claim workflows, contractor vetting, carrier-managed repair programs, and homeowner claim-support requests. We do not sell personal data to third parties.
For full details on what data we collect, how we use it, and your rights, see our Privacy Policy.
State Licensing Footprint
PerilBridge operates in compliance with state-level contractor licensing requirements. Contractors in the network are expected to maintain active, verifiable licenses where their operating states or municipalities require them.
State-by-state license numbers will be published here as PerilBridge expands into each market. For current licensing information, contact compliance@perilbridge.com.