Steer Security Policy

Steer’s Commitment to Trust

At Steer, we take security very seriously. That's why we've implemented a security system with the following measures:

  • Prevents all unauthorized access.
  • Supports continuous monitoring for potential vulnerabilities.
  • Embraces ongoing, proactive improvement to stay on top of the latest security tools and threats.

Data Protection

All user data­­ (including information you send like usernames/passwords) is sent over HTTPS secure channels.

Our website, platform and databases are hosted and managed within Heroku’s secure data centers. Heroku continually manages risk and undergoes recurring assessments to ensure compliance with industry standards. You can find more information on Heroku security practices at Heroku Security.


All user data is automatically backed up on Heroku servers with the capability to provide point-­in-­time recovery down to the second. Additionally, we create automatic backups on a daily basis.

Credit Card Processing

We use Paddle as our credit card processor. We do not store your card number or CVC code after we submit it to Paddle. Paddle does store and protects this data. They are a major credit card processor who specializes in handling this information. You can find out more about Paddle and their PCI compliance at their website.

Account Access

We verify account access through email and password­-based authentication. We always store individuals passwords encrypted with salts, using the most secure, well-tested, and up-to-date hashing schemes to add an extra layer of protection to your account.

Data Privacy

We have a published privacy policy that clearly defines what data is collected and how it is used. We are committed to customer privacy and transparency. Please see our full Privacy Policy for more details.