Security at the Core
IQ NumberHub sits in the critical path of your business communications. We understand that SMS messages and call logs often contain highly sensitive Personal Identifiable Information (PII). That's why security isn't an afterthought—it's woven into the fabric of our architecture.
Data Encryption
- In Transit: All API requests, dashboard interactions, and webhook deliveries are strictly enforced over TLS 1.2+ (HTTPS).
- At Rest: All message logs, contact data, and configuration details are encrypted at rest using industry-standard AES-256 encryption.
Compliance & Certifications
We adhere to stringent global security frameworks so you can operate with peace of mind:
- PCI DSS: Secure payment processing infrastructure for billing and provisioning.
- GDPR & CCPA: Strict data retention policies and tools to allow you to programmatically delete PII upon user request.
- 10DLC Compliant: We strictly enforce A2P 10DLC registration to prevent spam, maintain high deliverability, and keep your numbers compliant with US carrier regulations.
Access Control & Auditing
Enterprise teams require granular control over who can purchase numbers or change routing rules.
- Role-Based Access Control (RBAC): Assign specific permissions to team members. Restrict junior developers from purchasing numbers while allowing them to view webhook logs.
- Audit Trails: Every configuration change, login event, and API key generation is logged and available for review in your security dashboard.
- API Key Scoping: Generate restricted API keys that only have access to specific endpoints (e.g., send SMS only).