Security & Compliance

How we protect your data

These are the foundational controls every responsible communications platform implements, and SimpleChime is no exception.

Encryption in transit

All data between your device and our servers is encrypted using TLS, the same standard used by banks and major platforms.

Encryption at rest

Stored messages, files, and account data are encrypted on our servers, so it's unreadable even if physical access occurs.

Access controls

Admin roles and user permissions give your organization controls over who can access what within SimpleChime.

Multi-factor authentication

MFA adds a second verification step at login, significantly reducing the risk of unauthorized account access.

Reliable infrastructure

SimpleChime runs on established US-based cloud infrastructure with redundancy and uptime monitoring.

Secure authentication

Passwords are hashed and salted. We support SSO via SAML and OAuth for enterprise customers.

Data practices

Clear, straightforward answers to the questions every organization should ask before trusting a communications tool.

Topic

Our approach

Data ownership

Your data belongs to you. We don't use your messages or files for advertising or to train AI models.

Data location

Your data is stored on servers located in the United States.

Third-party sharing

We do not sell your data. We only share it with sub-processors necessary to operate the service (e.g. cloud hosting, email delivery).

Law enforcement requests

We comply with lawful US legal process. We will notify affected users when legally permitted to do so.

Data deletion

You can delete your account and data at any time. We process deletion requests without unnecessary delay.

Breach notification

In the event of a security incident, we will notify affected users promptly and in accordance with applicable US law.

Your Trust is Our Baseline, not a Feature