RemitClear

Security

Effective 27 May 2026 · Version 2026-05-27

An overview of the measures we use to keep your data safe. We are happy to answer specific security questions from prospective and current customers.

Hosting and infrastructure

RemitClear runs on established cloud infrastructure providers that maintain their own physical and network security programmes. Our data and backend services are hosted with Supabase, and the web application is delivered through Vercel. The full list of providers is on our Sub-processors page.

Encryption

Data is encrypted in transit using TLS. Stored data, including uploaded documents, is held by our infrastructure providers with encryption at rest.

Availability

We target 99% monthly availability, excluding planned maintenance and events beyond our reasonable control. Service credits are not offered at current pricing tiers. Customers on bespoke or enterprise contracts can negotiate a separate availability commitment.

Access control and tenant isolation

  • Each customer's data is isolated per workspace and enforced at the database level with row-level security.
  • Accounts support multi-factor authentication, and access within a workspace is governed by roles (owner, admin, member).
  • Our team operates on least-privilege access, and payment posting actions are logged for audit.
  • Connections to your accounting system use authorised OAuth tokens; we never see or store your accounting system password.

AI processing

Document extraction uses an AI provider under business terms that do not permit your content to be used to train general-purpose models. Documents are sent for the purpose of extraction only.

Data retention and deletion

We retain data only as long as needed to provide the Service and meet legal obligations. Uploaded remittance data is deleted within 30 days of the end of the relevant subscription. See the Privacy Policy and DPA for detail.

Incident response

We monitor for issues and maintain a process to investigate and respond to security incidents. In the event of a personal data breach, we notify affected customers without undue delay and provide the information they need to meet their own obligations.

Reporting a vulnerability

If you believe you have found a security issue, please contact privacy@remitclear.com. We welcome responsible disclosure and will work with you to confirm and resolve genuine issues.