Security & compliance
Your operation’s data, kept in Australia.
Maintn holds the records that run your business — jobs, customers, photos and calls. It is built to keep them in Australia, isolated per business, and yours to take with you.
How we protect it
The controls behind every account
Australian data residency
Your data is hosted in an Australian region (ap-southeast-2). It does not leave the country in the ordinary course of running the platform.
Row-level tenant isolation
Every business is isolated at the database row level, so one tenant can never read another tenant’s jobs, customers or call data.
Encrypted in transit and at rest
Traffic is served over TLS and data is encrypted at rest by the underlying Australian-region infrastructure.
Your data, yours to take
Export or delete your data at any time. There is no lock-in and no hostage-taking of your records on the way out.
ISO 27001 — on the path
We are building to the ISO 27001 control set as the operation scales, ahead of formal certification.
SOC 2 — on the path
SOC 2 readiness is on the roadmap so enterprise and agency buyers have the assurance they expect.
Items marked “on the path” are in progress, not certified today. We publish certifications here as they are granted rather than claim them early.
Our posture
We would rather tell you exactly where we are than sell you a badge we have not earned. What is live is live; what is on the path is marked as such.
The detail, in writing
Read the documents, not just the claims
Data residency assurance
Where your data lives and the region it is pinned to.
Subprocessors
Every third party that touches your data, and what for.
Data Processing Agreement
The DPA template covering how we process data on your behalf.
Privacy Policy
How we collect, use and protect personal information under the APPs.
Voice Recording Consent
How call recording meets Australian per-state consent law.
Terms of Service
The terms your Maintn subscription runs under.
Financial features in the Plumb sub-brand are delivered under Maintn Pty Ltd (AFSL pending). Licence details will be published here once granted.
Questions about security or data residency?
Agencies and enterprise buyers can request our current posture and roadmap in detail. Talk to us and we will walk through it.
Talk to usFAQ
Security questions, answered
Where is my data hosted?
In an Australian region (ap-southeast-2). Maintn is Australian-owned and Australian-hosted, and your data does not leave the country in the ordinary course of running the platform.
How are businesses kept separate from each other?
Every tenant is isolated at the database row level. Access is scoped to your organisation, so no other business can read your jobs, customers, photos or call data.
Is Maintn certified to ISO 27001 or SOC 2?
Not yet. We build to the ISO 27001 control set and are working toward SOC 2 readiness as the operation scales. We will publish certifications here as they are granted rather than claim them early.
Can I export or delete my data?
Yes, at any time. You can export your records and request deletion — there is no lock-in and no exit fee.
How do you handle call recordings?
Call recording follows Australian per-state consent law. The Voice Recording Consent notice sets out how consent is handled in each state, and recordings are stored under the same Australian residency and isolation as the rest of your data.