Safeguarding your data is our top priority
At Stronghold, security comes first. It's the foundation for everything that we build and the way that we operate.
We understand that security is about more than protecting your data, it's about protecting your family and assets, and we take that responsibility seriously.
Our approach to data security
Encryption
The data that you upload to your Stronghold is encrypted at rest and in transit. We use AES-256, the industry-leading standard in encryption, to protect your data.
Access
We require strong passwords (at least 12 characters) that are scanned to ensure that they haven't been leaked in a data breach. Two-factor authentication provides additional security.
Control
You have control over the documents, photos and other files that you upload to your Stronghold. Share them securely by adding collaborators or by sharing secure, time-limited links.
Advanced, multi-layered encryption
We encrypt your data at rest and in transit.
To keep your data safe, we use advanced encryption, known as 256-bit AES encryption, while your data is at rest on our system. This is a standard used in government and industry to protect sensitive information. We also use Transport Layer Security to encrypt your data in transit, including when you upload files and when they are downloaded using our secure links.
Two-step verification
Two-step verification, also known as two-factor authentication (2FA), adds an extra layer of security to your account by requiring two forms of verification to "double check" that it's you before granting access. After entering your password, you are prompted to provide a second factor, which is a code generated by an authentication app (for example, Google Authenticator or Microsoft Authenticator).
This additional step ensures that even if your password is compromised, unauthorised access is prevented. Implementing 2FA enhances security, safeguarding your family's essential information against potential threats.
Password security
To protect your data we take the following password security measures:
Enforce a Strong Minimum Password Length: To enhance security, we require a minimum password length of at least 12 characters as shorter passwords are not recommended due to their vulnerability.
Require a Mix of Characters: Our password policy ensures robust security by requiring a combination of digits, lowercase and uppercase letters, and symbols in every password. This diverse character set significantly strengthens password protection.
Prevent the Use of Leaked Passwords: We automatically reject any passwords that have been leaked in data breaches. This proactive measure helps keep your account safe from malicious actors.
Controlled sharing and collaboration
We make it easy to share and collaborate, but we also take steps to keep your data from falling into the wrong hands. You can share links for the recipient to securely view and download shared documents, but all links expire after 24 hours. Stronghold doesn't support permanent links that allow access to your documents forever.
Compliance standards
As a UK-based business, we comply with GDPR, the world's leading regulatory framework for privacy and data protection. We take these obligations and our internal compliance seriously. Privacy and security extends beyond the technical measures that we have in place to protect your data. Having robust internal processes, access controls and documentation are critical components of our approach to keeping your family's data safe.
To learn more about how we handle customer data, please see our Privacy Policy.
