Last reviewed: July 2026
In transit and at rest
All traffic to this website is encrypted with TLS. Form submissions and document uploads are transmitted encrypted and stored in access-controlled systems hosted on hardened infrastructure. Uploaded documents land in a private, non-public storage bucket with type and size restrictions enforced server-side — there are no public links to client documents, period.
Access discipline
- Database access is governed by row-level security: public forms can submit but cannot read; portal users can read only their own records; staff review happens through authenticated, audited administrative channels
- Role-based access and multi-factor authentication for administrative systems
- No confidential documents accepted or sent as casual email attachments — the portal and secure channels exist for a reason
- Retention follows regulatory and underwriter requirements; test and junk submissions are purged
The human layer
Most breaches walk in through people, not servers. Our team trains on phishing and social-engineering patterns, follows callback verification for any funds-related instruction, and is empowered to slow anything down that looks wrong. Speed is a service goal; it never outranks verification.
Reporting a concern
If you believe you've received a suspicious communication claiming to be from us, or discovered a security issue with this website, call 954.454.4522 immediately. We take reports seriously and respond quickly.