Trust

Security

Before you put your maintenance data into any system, you should know how it's protected. Here's how MaintainFlow keeps yours safe — in plain terms.

Last updated · June 28, 2026

The essentials

  • Your data is separated by workspace. Every company is its own tenant. One company can never see another's work orders, assets, parts, or history.
  • Roles and permissions are enforced server-side. Every action is checked on the server against your role — not just hidden in the interface — so people can only do what their role allows.
  • You can export your data. Your work orders, assets, parts, and reliability history are yours. Export them whenever you want.
  • Backups are maintained. Data lives in managed PostgreSQL with automated, regular backups.
  • No credit card is required for the trial. Start a 30-day free trial without entering any payment details.

Encryption

All traffic between your browser and MaintainFlow is encrypted in transit over HTTPS/TLS. Data is stored in a managed PostgreSQL database with encryption at rest.

Tenant isolation, enforced in the database

Company separation isn't only application logic — it's enforced at the database layer with row-level security, scoped to your company. Privileged operations run through audited, permission-checked server functions, so the rules can't be bypassed from the client.

Payments

Subscriptions are handled by Stripe. Card details go straight to Stripe — MaintainFlow never sees or stores your card number.

If your subscription lapses

We never hold your data hostage. A lapsed trial or payment moves your workspace to read-only — you can still view and export everything — until billing is resolved. Nothing is deleted as a result of non-payment.

Questions or reporting an issue

Found something or have a security question? Email info@maintainflow.pro. See also Data Ownership and our Privacy Policy.