GoRefer Trust Center
Trust Center Changelog
Updated April 1, 2026
This changelog tracks material updates to GoRefer's security practices, privacy policies, and compliance documentation. Subscribe to updates by emailing privacy@gorefer.io.
Version History
April 1, 2026
Full Trust Center launch — expanded from a single security page to a structured multi-page system
Full Trust Center at /trust/* with 15 structured pages
Dedicated Security, Privacy, Compliance, Infrastructure, and Access Control pages
Subprocessors page with vendor table (8 vendors listed)
Data Protection and Data Retention pages with structured tables
Incident Response page with P0–P3 severity levels and SLAs
Vulnerability Disclosure policy with responsible disclosure commitments
Data Processing Addendum (DPA) summary page
Penetration Testing policy page
Private Document Portal (request access for NDA-gated documents)
Security contact form (direct disclosure to security@gorefer.io)
Sidebar navigation with grouped sections and active-page highlighting
Existing /security page now redirects to /trust/security (301)
June 15, 2025
Added Security Hub details and field-level encryption documentation
Security Hub section with firm health score details
Field-level encryption list (SSN, EIN, bank accounts, driver's license)
Infrastructure section updated to reflect MongoDB Atlas migration
Added AI service providers to subprocessors list
January 25, 2025
Initial security and compliance page published
Initial security & compliance page at /security
Six security pillars: Encryption, Tenant Isolation, RBAC, Auth, Monitoring, Infrastructure
Privacy Policy (v1.0)
Terms of Service (v1.0)
Cookie Policy