We are hosted on Heroku (AWS). Our datastores are Postgres, S3, and Redis.

Our databases and S3 buckets are encrypted at all times using AWS KMS. All communication is encrypted in transit.

Our employees do not have access to your data unless you explicitly authorize them. Our application is built with this philosophy.

We are currently preparing our SOC2 Type I and have picked Schneider Downs to perform our audit. To request a copy of this document, please use the form below.

Pima is compliant with Privacy Shield and GDPR. If you have questions about your data please reach out to privacy@pima.app.

If you have any concerns about security or would like to report a security issue, please reach out to our team at security@pima.app. Include the details of your concerns or finding and we will get back to you.