DOCUMENT // TRUST CENTERREV // 001

Security, privacy, and data handling

This page is maintained by the AlignDrive workspace owner to answer common security and privacy questions about the platform. It describes the controls that are enabled today, and separates platform-provided capabilities from customer responsibilities. It is not a certification or an independent audit.

SECTION // ACCESS04

Access & authentication

Every workspace is gated by an authenticated session. Credentials are never handled by the UI directly — sign-in is brokered by a managed identity provider.

  • 01Email + password sign-in with hashed credentials
  • 02Google sign-in available for supported workspaces
  • 03Sessions issued as short-lived tokens with refresh rotation
  • 04Sign-out clears local session state on the device
SECTION // PLATFORM04

Platform & hosting

AlignDrive is delivered as a modern edge-rendered web application. Traffic between your browser and the platform is encrypted in transit via HTTPS/TLS.

  • 01HTTPS/TLS enforced on all app traffic
  • 02Server logic runs on isolated serverless workers
  • 03Managed database with row-level security policies
  • 04No customer data written to durable browser storage beyond the session token
SECTION // DATA04

Data collection & use

AlignDrive collects only what is needed to operate your workspace: account identity, workspace content you upload or create, and minimal telemetry required to keep the service running.

  • 01Account: email, display name, authentication metadata
  • 02Workspace: files, folders, and settings you create
  • 03Operational: request logs and error reports used to keep the service healthy
  • 04No sale of personal data. No third-party ad tracking.
SECTION // CONTROL04

Your data, your control

Retention is user-controlled. You decide when content leaves the platform, and account deletion removes your workspace data.

  • 01Export or delete your files at any time from Settings
  • 02Delete your account to remove associated workspace data
  • 03Deleted records are purged from active systems on request
  • 04Backups rotate on a rolling schedule and are not user-accessible
SECTION // SUBPROCESSORS03

Subprocessors & integrations

AlignDrive is built on a small set of infrastructure providers. Third-party integrations you connect (such as cloud storage) operate under their own terms.

  • 01Managed backend services for auth, database, and storage
  • 02Edge compute provider for request handling
  • 03Optional cloud integrations run under the provider you connect
SECTION // COOKIES03

Cookies & local storage

AlignDrive uses only the storage required to keep you signed in and to remember your workspace preferences. No advertising or cross-site tracking cookies.

  • 01Session token stored to keep you signed in
  • 02Preference flags (e.g. intro seen, theme) stored locally
  • 03No third-party marketing or ad-network cookies
SECTION // CONTACT03

Report a concern

Security researchers and users can reach the AlignDrive team about privacy, security, or data-handling questions through the workspace owner's published contact channel.

  • 01Security concerns: contact the workspace owner listed on your account
  • 02Privacy requests (access, export, deletion): submit from Settings or via workspace owner
  • 03Suspected incident: stop use and notify the workspace owner immediately
NOTE // SHARED RESPONSIBILITY

AlignDrive provides the platform controls described above. The workspace owner is responsible for how the workspace is configured, who is invited, and what content is uploaded. Users are responsible for protecting their sign-in credentials and the devices they use to access AlignDrive.

RETURN // PLATFORM
Back to the AlignDrive overview.
← Platform