Paroecia
Sign inStart free

Security.

Parish data deserves serious protection. Here's how we host it, how we sign you in, and what we do when something goes wrong.

Start free

What we do

Where your data lives

Paroecia runs on professional cloud infrastructure in the United States, spread across multiple data centers so a single outage doesn't take the service down. We use established managed services rather than running our own servers, so we benefit from the security their providers maintain at scale.

Sign-in

Sign-in runs through a managed identity service that enforces strong passwords, locks accounts after repeated failed attempts, and supports multi-factor authentication for any account that wants it. We never see or store your password.

Encryption in transit and at rest

Every connection between your browser and Paroecia is encrypted. Your parish's data is encrypted at rest in the database, and again in our backups. Email we send on your behalf is delivered over an encrypted connection wherever the receiving server supports it.

Access controls and audit logs

Paroecia engineers only access production systems when they need to and only through audited paths. Administrative actions on your parish — invitations, role changes, entitlements — are recorded in an audit log. The only people who can read your parish's roster are the people your parish has invited.

Backups, recovery, and monitoring

Your parish's data is backed up continuously, and we can restore it to any second within the last 35 days. We monitor the service automatically; on-call engineers are paged when something is wrong. We rehearse recovery so the procedure works the day we need it.

When something goes wrong

If you spot a security problem, write to us through our contact form (pick "Other" or whichever topic fits). A human responds within one business day. Confirmed issues are fixed as fast as we can ship; affected parishes are told directly what happened and what we did about it.

What we don't do

  • We don't sell, rent, or share parish data with marketers.

  • We don't expose one parish's data to another parish, ever.

  • We don't store your password ourselves.

  • We don't bring on outside vendors who'd see your parishioners' personal information beyond what's needed to run the service.

Reporting a security issue

Write to us through our contact form. We confirm receipt within one business day and tell you what we're doing about it. We thank researchers who report responsibly.

Open the contact form