Security Policy

We protect client data through encryption in transit (TLS/HTTPS), access controls, and secure development practices. Sensitive project files are shared only through the client portal.

Official communication occurs through verified business email (support@ptfclosing.com) and the client portal messaging system. Verify sender identity before sharing credentials or payment details.

Client portal accounts require strong passwords. We recommend unique passwords and prompt reporting of suspected unauthorized access to support@ptfclosing.com.

Project files are stored in access-controlled environments. Download links expire where applicable. Clients should not share portal credentials with unauthorized parties.

Internal access to client data is limited to team members with a legitimate business need. Access is reviewed and revoked when no longer required.

If you discover a security vulnerability, please report it responsibly to support@ptfclosing.com. Do not publicly disclose vulnerabilities before we have had reasonable time to address them.