WebDevAuto

Trust & Security

You’re handing us your customer system. Here’s how we protect it.

WebDevAuto builds and operates your website, call answering, and CRM — which means we hold real customer data. This page is the straight answer to “is it safe?” If you need something not covered here, email porter.websales@webdevauto.com.

Encryption everywhere

TLS in transit and encryption at rest for all customer data, on Google Cloud infrastructure.

Least-privilege access

Role-based access controls, audit logging of administrative actions, and least-privilege service accounts.

You own your data

Your customer data — and any custom code we build for you — is yours. Full export on request, anytime.

US data residency

Data is stored and processed in the United States unless your agreement specifies otherwise.

Breach notification

If we ever confirm a security incident affecting your data, we notify affected customers without undue delay and within 72 hours of confirmation, with what we know, what we’re doing, and what you should do. We’d rather tell you early than tell you late.

Data & code ownership

Your data is yours. The custom application code we build for you on a fixed-bid engagement is yours — transferred to a repository you control at project close. You can export your CRM data (leads, contacts, history) at any time by request. If you leave, you leave with your data and your code.

See the full terms on custom builds and in our Terms of Service.

Subprocessors

We publish the named third-party providers we rely on, what they do, and the data they touch — openly, no NDA required. Each is contractually bound to confidentiality and processes only what’s necessary.

View the named subprocessor list

Uptime & monitoring

We monitor every site and system we operate 24/7 and target 99.9% uptime, fixing most issues before you notice. Critical deploys ship the same business day for clients on the Growth and Direct tiers.

Compliance & agreements

We sign a Data Processing Agreement with customers who process personal data under GDPR or CCPA. Our handling of your data is described in the Privacy Policy. For healthcare and other regulated verticals (HIPAA, addiction-treatment content rules), we scope compliant workflows and sign a BAA where required.

For procurement & security teams

Available on request, within five business days:

  • Completed security questionnaire (SIG-Lite or your own template)
  • W-9 and Certificate of Insurance (COI)
  • Signed Data Processing Agreement and, where applicable, BAA
  • Vendor onboarding documentation

Email porter.websales@webdevauto.com with “Vendor review” in the subject and we’ll turn it around fast.

Built on infrastructure you already trust

Google Cloud

Hosting · database · auth

Stripe

Payments · billing

Twilio

Voice · SMS

Anthropic

AI (Claude)

Deepgram

Speech for the voice agent

Resend

Transactional email

The full named list, including AI and email providers, is on the subprocessor page.

© 2026 WebDevAuto · Salt Lake City, UT