Your vessel's operational data is sensitive. Here's how we protect it.
Every layer of the CrewNotice stack is designed with security as a default, not an afterthought.
All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Your crew's information is protected at every stage of storage and transmission.
CrewNotice is hosted on Vercel's global edge network with Supabase providing the database infrastructure. Both platforms maintain SOC 2 Type II compliance.
Industry-standard authentication with bcrypt password hashing. Session tokens are short-lived and automatically rotated to minimise exposure risk.
Every vessel's data is completely isolated using row-level security policies at the database level. Crew on one vessel cannot access data from another vessel, ever.
We handle crew data with the care and transparency it deserves.
As a UK-registered company, Sharp Digital Solutions Ltd complies with UK GDPR and the Data Protection Act 2018. Crew members have the right to access, correct, and delete their personal data.
Data is processed and stored in secure data centres. No crew data is sold, shared with advertisers, or used for any purpose other than providing the CrewNotice service.
Vessel data is retained for the duration of the subscription plus 12 months. After this period, all data is permanently deleted upon request.
If you discover a security vulnerability in CrewNotice, please report it to security@crewnotice.com. We take all reports seriously and will respond within 48 hours.
For full details on how we handle personal data, read our Privacy Policy.