Security, Privacy, and Data Protection
How Magnate360 protects your data with encryption, access controls, and compliance standards.
Magnate360 takes data security seriously. Your clients' personal information is protected at every layer.
Encryption:All data is encrypted in transit (TLS 1.3) and at rest (AES-256)Database credentials are rotated automaticallyAPI keys are stored in environment variables, never in code
Access controls:Multi-factor authentication (MFA) available on all plansSession tokens expire after 24 hours of inactivityAPI access requires bearer token authentication
Compliance:PIPEDA compliant — data stored in Canadian-region infrastructureCASL consent enforcement built into every email send pathFINTRAC identity verification records stored with audit trailsBCFSA practice standards integrated into workflow compliance checks
Data residency: Your data is stored in Supabase (PostgreSQL) with row-level security (RLS) policies. Each tenant's data is isolated at the database level — no cross-tenant data access is possible.
Incident response: In the event of a security incident, we notify affected users within 72 hours as required by PIPEDA. Our incident response plan includes containment, investigation, notification, and remediation steps.
More in Account & Billing
Managing Your Subscription
Upgrade, downgrade, or cancel your Magnate360 plan. Understand billing and refunds.
Exporting Your Data
Download your contacts, listings, and communications as CSV files.
Team Management and Collaboration
Add team members, manage roles, and collaborate on listings and contacts.
Notification Settings and Preferences
Configure which notifications you receive and how — in-app, email, or SMS.
Still need help?
Can't find what you need? We respond within 4 hours.