← DemandTraX™

    Trust & Security

    Last updated: July 2, 2026

    DemandTraX helps inventory teams forecast demand and optimize stock. That means trusting us with your operational data, and that trust has to be earned with specifics — not slogans. This page explains exactly how your data is protected, who can access it, and what our continuity commitments are as a focused, independent company.

    If you have a question this page doesn’t answer, email security@demandtrax.app.

    Your data is yours

    • Your ERP remains your system of record. DemandTraX is an analysis layer on top of the data you import. We are not the authoritative store of your inventory — your own systems are. If we ever went away, your source data is untouched.
    • One-click export, any time. You can export your data to CSV/Excel from within the app whenever you want. There is no lock-in and no export fee.
    • No selling, no sharing. We never sell your data or share it with third parties for marketing, and we do not use it to train models shared with other customers. It is used only to provide the Service to you.

    Infrastructure

    • Trusted cloud foundation. The Service runs on Google Cloud Platform (Firebase). Our infrastructure provider maintains SOC 2 Type II and ISO/IEC 27001 certifications for the data centers and managed services your data runs on.
    • Encryption in transit. All traffic is served over HTTPS/TLS.
    • Encryption at rest. Data stored in Google Cloud Firestore is encrypted at rest by the platform by default.

    Authentication

    • Managed identity. Sign-in is handled by Firebase Authentication (Google’s managed identity service), supporting email + password and Sign in with Google.
    • We never see your password. Credential hashing and verification are handled entirely by Firebase Authentication. Password reset is self-serve via verified email.
    • Invitation-only access. Only email addresses on an administrator-managed allowlist can access the application; unrecognized accounts are refused.
    • Hardened sessions. Session cookies are set with Secure (in production) and SameSite=Strict flags.

    Access control & tenant isolation

    • Isolation at the database layer. Each customer workspace is isolated by server-side Security Rules — not merely hidden in the interface. A request for data outside your workspace is rejected by the database itself.
    • Role-based permissions. Viewer (read-only), Analyst (run forecasts, no member management), and Admin (full workspace control). Read-only roles cannot modify data.
    • Deny-by-default. Anything not explicitly permitted is refused.

    Auditability, backups & operations

    • Immutable audit log. Sensitive actions are recorded to an append-only audit log. Entries cannot be edited or deleted — the record is immutable by design.
    • Restorable import checkpoints. Recent imports are retained as snapshots, so an accidental or bad import can be rolled back with one click, on top of the managed durability of Google Cloud Firestore.
    • Proactive monitoring. Error monitoring surfaces issues before they become outages.
    • Abuse & cost protection. Compute-intensive endpoints are rate-limited, and authenticated endpoints only accept requests from the application’s own origin.
    • Secret management. API keys and credentials are stored in Google Cloud Secret Manager and never committed to source code.

    Business continuity — the honest answer

    We’re a focused, independent company. Rather than pretend that carries no risk, we’ve put concrete safeguards in place so your access to your own data never depends on any one person being available. These commitments are set out in our Terms of Service:

    • Data-export guarantee. You can export all of your data at any time, and we guarantee a data-export window on termination for any reason.
    • Wind-down notice. We commit to at least 90 days’ written notice before any discontinuation of the Service, with your data exportable throughout that period.
    • Continuity plan. A designated continuity contact holds the access and documented runbooks required to maintain the Service or execute an orderly, data-preserving wind-down if the founder is unavailable.
    • Source-code escrow. Available for enterprise agreements: a neutral third party holds our source code, released to you under defined conditions.

    Our goal is simple: if anything ever happens to us, you walk away with all of your data and adequate notice — never stranded.

    Compliance posture (in plain terms)

    We want to be precise here rather than imply more than is true:

    • What we inherit: our infrastructure runs on Google Cloud, which is independently SOC 2 Type II and ISO 27001 certified. That covers the physical and platform layer your data sits on.
    • What we are: DemandTraX is not itself independently SOC 2 certified today. For customers who require it, we can complete your security questionnaire (SIG / CAIQ), provide results of an independent penetration test, and discuss a certification timeline as part of an enterprise engagement.
    • Billing: paid plans are invoiced directly. We do not store payment-card data.

    We’d rather tell you exactly where we stand than check a box we haven’t earned.

    Responsible disclosure

    Found a security issue? We want to hear about it. Email security@demandtrax.app with details and we’ll respond promptly. Please give us a reasonable window to remediate before any public disclosure. We won’t pursue good-faith security research.

    This page describes controls in effect as of the date above and is reviewed after significant changes to the product. It is provided for transparency and does not by itself form part of any contract; contractual terms are set out in your agreement with us.