Security

Security in Arovon is built around a few core principles: isolate customer data, encrypt everything in transit and at rest, log all access, and limit who can see what.

Data isolation

Every account's data is isolated at the database level using row-level security policies. Your files, extracted data, and team information cannot be accessed by other customers.

Encryption

All data is encrypted in transit using TLS 1.2 or higher. Files stored in Arovon are encrypted at rest using AES-256.

Access controls

Team roles control what each user can do. Admin users can manage team settings and see all activity. Standard users can upload, review, and export within their assigned projects.

Audit logging

All actions in Arovon are logged with a timestamp and user ID. Logs are retained for 90 days. Support staff access to customer accounts is also logged and visible to the account owner.

Reporting a vulnerability

If you discover a security issue, please contact security@arovon.com. We respond within 48 hours and will keep you informed of our investigation and remediation timeline.

RFQ attachments

RFQ file uploads are stored in private object storage per account with access restricted to your authenticated users (and support staff only as agreed). Database access to RFQ records and quotes is isolated with row-level security.