Features AI Advantage Pricing Compare Security
Log In Book a Demo →
Security & Reliability

Enterprise-grade protection.
SMB-friendly price.

Your clients trust you with their security. You can trust GuardArra with your data. We built security in from day one — not bolted on after the fact.

Book a Demo Security Questions
Security Overview

Every layer protected.

GuardArra is built with the same security standards as enterprise financial platforms — because your operation’s data deserves nothing less.

🔒

Grade A Security Headers

Full CSP, HSTS, X-Frame-Options, X-Content-Type-Options, and Referrer-Policy. A+ on independent security header audits.

🔐

AES-256-GCM Encryption

All sensitive data encrypted at rest using AES-256-GCM. Data in transit protected by TLS 1.3 minimum — older protocols rejected.

📋

Full Audit Trail

Every action logged: timestamp, user ID, IP address, and action taken. Immutable log for compliance and dispute resolution.

🛡

Role-Based Access Control

Granular permissions: admins, supervisors, guards, client portal users. Principle of least privilege enforced throughout.

📱

TOTP Two-Factor Auth

Time-based one-time password 2FA available for all account types. Compatible with Google Authenticator, Authy, and all standard apps.

🔄

Daily Encrypted Backups

Automated daily backups to dual redundant destinations. Point-in-time recovery available. Your data is always protected.

99.9% Uptime SLA

Enterprise-grade hosting with redundant infrastructure. Your operation runs 24/7 — GuardArra is built to match.

🇺🇸

US-Based Infrastructure

All data stored and processed on US servers. No international data transfers. Built to meet US regulatory requirements.

Deep Dive

What “enterprise-grade”
actually means.

🔒

HTTP Security Headers

GuardArra implements the complete set of modern HTTP security headers, protecting against clickjacking, content injection, MIME sniffing, and cross-site scripting attacks.

  • Content-Security-Policy (CSP) — prevents XSS and injection
  • HTTP Strict Transport Security (HSTS) — forces HTTPS
  • X-Frame-Options: DENY — blocks clickjacking
  • X-Content-Type-Options — prevents MIME sniffing
  • Referrer-Policy: strict-origin-when-cross-origin
  • Permissions-Policy restricts camera/mic/geolocation
★ Grade A+ on Security Header Scan
🔐

Data Encryption

Data is encrypted at every stage of its lifecycle. Whether it’s stored in our database, cached in memory, or in transit between your browser and our servers.

  • AES-256-GCM for all sensitive data at rest
  • TLS 1.3 for all data in transit (1.0/1.1/1.2 rejected)
  • PBKDF2 key derivation for stored credentials
  • Per-record encryption for PHI and sensitive guard data
  • Encrypted database backups using separate key material
  • Keys rotated on a defined schedule
📋

Audit Trail & Logging

Every meaningful action in GuardArra generates an immutable audit log entry. Nothing is silently overwritten — every change has a full record.

  • Every login attempt logged (success and failure)
  • All schedule changes tracked with before/after state
  • Incident report edits capture every version
  • Data exports and report downloads logged
  • Admin permission changes recorded with approver
  • Logs are append-only and cannot be deleted by users
🛡

Access Control

GuardArra uses role-based access control (RBAC) enforced at every API endpoint and UI component. No feature is accessible without the correct role.

  • Admin: full platform access and user management
  • Supervisor: schedule management, reports, messaging
  • Guard: own shifts, tours, incident filing, messaging
  • Client Portal: their sites’ data only, read-only
  • API access requires scoped tokens, not master keys
  • Session timeout enforced after inactivity
Infrastructure

Built to stay up.

Your operation doesn’t sleep. Neither does GuardArra’s infrastructure.

🇺🇸

US-Based Servers

All data stored and processed in US data centers. No international transfers. Built to meet US compliance requirements from day one.

🔄

Dual-Destination Backups

Automated daily backups sent to two independent storage destinations. Point-in-time recovery available for any data loss scenario.

99.9% Uptime SLA

Enterprise-grade hosting with redundant infrastructure, automatic failover, and proactive monitoring 24/7.

🔍

Proactive Monitoring

Real-time application performance monitoring with automated alerting. Issues are identified and addressed before they reach users.

🚀

Staged Deployments

All platform updates are tested in staging environments before production deployment. Zero-downtime deployment processes used throughout.

📝

Incident Response

Documented incident response procedures for any security event. Customers notified promptly and transparently in the event of any impact.

Responsible Disclosure

Found a security issue?
Tell us first.

We take security seriously and are grateful to the security community for responsible disclosure. If you believe you’ve found a security vulnerability in GuardArra, please contact us before disclosing it publicly. We’ll investigate promptly and work to fix any confirmed issues quickly.

💋
Email us privately Send vulnerability details to security@guardarra.com
🕐
We respond within 48 hours We acknowledge receipt and begin investigation immediately.
We fix and credit Confirmed vulnerabilities are patched promptly. Researchers are credited with their consent.
Report a Vulnerability

Security questions?
We have answers.

Our team is happy to discuss our security architecture, answer compliance questions, or walk you through how your data is protected in a live call.

Talk to Us Security Team

support@guardarra.com  ·  We respond within 48 hours