<aside> 📜 TABLE OF CONTENTS

• Introduction

📔 Guides

• The broken logic of trap density (start here)
• Trap assembly guide (video + steps)
• Installation guides for different crops
• Installation guides for different pests
• Overwintering guide

🪤 Using your traps and apps

• Mobile app overview
• Web app overview
• Regular maintenance

🆘 Problems? Get help

• Troubleshooting
• Mini status lights meaning
• Customer support

🧑‍💻 Tech stuff

• API documentation
• Changelog

💡 Other important info

• Privacy and security
• FAQ </aside>

scoutlabs Security Overview 🛡️

We know security is a big deal. That's why we've put in place a bunch of measures to keep your data safe while using scoutlabs and we keep making it more and more secure as we go. Here’s a quick rundown of what we do to make sure everything stays secure, so you can focus on what really matters—catching those pesky insects.

Authentication and Authorization

Authentication

We take authentication seriously (as we should). Here’s what we’ve done to make sure only you can access your account:

• Password Hashing: All user passwords are securely hashed and salted (basically, we mix it up so no one else can figure them out). We don’t store plaintext passwords—ever.
• Session Security: We use secure tokens for your sessions, so every time you log in, you're good to go without constantly re-entering your info.

Data Security

Your data’s safe with us. Here’s how we protect it:

• Secure Infrastructure: We use DigitalOcean’s infrastructure, which is fully compliant with ISO/IEC 27001 and SOC 2 standards. This means we follow best practices to keep your data locked down.
• Encryption:
  • In Transit: All data moving between your browser and our servers is encrypted using HTTPS. No snooping here.
• Backups: We make regular backups and store them securely in Google Cloud Storage, just in case. Backups are encrypted, of course.

Data Collection and Privacy

We believe in collecting only what we need to get the job done. No more, no less.

• Minimal User Data: We only store the essentials: your name, email, hashed password, your company, and last login time. That’s it.
• IoT Device Data: We also collect data from IoT devices for operational purposes, to keep things running smoothly.

PostHog Analytics

To keep tabs on how our platform is doing, we use PostHog for analytics. And don’t worry, we’ve set it up to make sure no personally identifiable information (PII) is tracked.

Data Retention and Deletion

We store your data securely and are working on setting automated deletion schedules (currently, backups stick around forever because we’re still building, but we're fixing that soon). Need your data deleted? Just let us know, and we’ll take care of it, GDPR/CCPA style.

Compliance and Standards

Scoutlabs follows all the important rules, like GDPR and CCPA. Plus, we encrypt data both in transit and at rest. Oh, and we’re also upgrading the trap communications from HTTP to HTTPS (no one likes unencrypted traffic).

User Responsibilities

While we handle all the technical security stuff, you’ve got a part to play too. Use strong passwords (no ‘12345’, please), and make sure to keep your account safe. We’ve got tips if you need them (use a combination of a number, a word and a special character).

Ongoing Security Improvements

• Regular Audits: We regularly check our systems to catch any vulnerabilities before they become a problem.
• Firmware Updates: Our firmware team is always working behind the scenes to keep your traps secure and up to date.