Home/About/Trust & security
Security and trust, by design

Compliance you can prove rests on data you can trust.

DoorTRACE holds the evidence that proves buildings are safe. That makes security, data integrity, and an unbreakable audit trail central to how the platform is built, not bolted on afterwards.

Infrastructure

Built on infrastructure you can trust.

DoorTRACE is built on Cloudflare, the same enterprise-grade infrastructure that protects millions of the world's busiest sites. Your data is hosted in the UK and served from a global network with always-on DDoS and bot protection, so resilience and uptime come built in, not bolted on.

Built on Cloudflare
Trusted by millions of the world's busiest sites
UK data hosting
Your data stays in the United Kingdom
Enterprise edge protection
Always-on DDoS and bot defence
Resilient and global
Fast and dependable, around the clock
Protection

Protected at every layer.

Security isn't a feature we added. It runs through every layer of the platform, from how you sign in to how a single inspection is recorded.

Multi-factor authentication

A second layer on sensitive logins, so a password on its own is never enough to get in.

Geolocation ringfencing

An engineer's inspection is verified against where they actually are, so a record can't be logged from the wrong place.

Role-based access

Every request is checked against the user's identity and role before any data is returned. People see only what their role allows.

Tenant isolation

Each FM company's data is fully walled off from every other. Every query is scoped to its tenant, with no exceptions.

Password protection

Credentials are protected with strong, industry-standard one-way hashing. We never store passwords in a readable form.

Protected file access

Inspection photos and documents are served through expiring, access-controlled links, never from a public store.

The audit trail

An append-only record of everything.

Every action in DoorTRACE is written to an audit log: who did it, what changed, when, and from where. Those records can't be edited or deleted. It's the Golden Thread the Building Safety Act expects, captured automatically as the work happens, not reconstructed after the fact.

Registered with the Information Commissioner's Office
Registered: DoorTRACE Holdings Ltd
UK GDPR
Article 6(1)(c), legal obligation
Export on demand
Your full records, any time
Data & privacy

Your data is yours.

DoorTRACE Holdings Ltd is registered with the Information Commissioner's Office, and personal data is processed under UK GDPR. You can export everything you hold at any time: inspections, doors, defects, photos, and the full audit trail. There's no lock-in on your records.

Questions about security?

Talk to us about your data.

Happy to walk through hosting, access control, and the audit trail in detail. Book a demo, or read exactly how we handle data in our privacy policy.