Door Knocking.Pro
Security & Privacy
Last updated: May 29, 2026
Door Knocking Pro helps your campaign organize its ground game on the voter list you already have the right to use. That focus is also our biggest security advantage.
The short version:
- We are not a data broker. We never buy, sell, rent, trade, or share voter or consumer data, and we don't build cross-campaign profiles of voters.
- Your data is yours. Your list and every door-knock note your team logs belong to your campaign — export it or have it deleted anytime.
- Each campaign is walled off in its own database. One campaign physically cannot see another's voters or notes.
- We collect almost nothing about volunteers — a name, username, and email for password resets. No advertising trackers.
How accounts and logins are protected
- Passwords are never stored. We keep only a one-way cryptographic hash (PBKDF2-HMAC-SHA256, 200,000 iterations, with a unique salt per user). Even we cannot read your password.
- Encrypted connections everywhere. All traffic uses HTTPS/TLS, enforced with a strict-transport-security policy.
- Hardened sessions. Long random session tokens stored server-side; the cookie is HttpOnly, Secure, and SameSite-limited.
- Brute-force protection. Repeated failed logins are throttled and locked out.
- Safe password resets. Single-use links that expire in one hour. Passwords are never emailed.
- Browser hardening against clickjacking and MIME-sniffing, with a no-referrer policy so your URLs don't leak.
How access is controlled
- Roles. Admins manage the campaign; canvassers knock and log — each sees only what their role allows.
- Optional territory limits. Scope a team to specific neighborhoods so volunteers see only their turf.
- Invite-only accounts. New users join only through a campaign invitation — no one can self-register off the street.
How your data is stored and backed up
- Per-campaign isolation. Every campaign lives in its own separate database — there's no shared table of everyone's voters, so a stray query can't leak one campaign's data into another.
- Encrypted at rest. Hosted on managed cloud infrastructure (Railway, running on Google Cloud Platform) that encrypts stored data at rest.
- Automatic backups. A full snapshot of each campaign is taken daily and on every update, retained and copied to separate off-site storage. Admins can download their own backup anytime.
- Leave clean. Ask and we'll export your campaign's data to you and permanently delete it from our systems.
What we don't do
- We don't sell or share your data with anyone.
- We don't combine your campaign's data with other campaigns'.
- We don't run third-party advertising or social trackers in the app.
- We don't ask for or store sensitive data (no SSNs, payment cards, or banking details).
Honest limitations
No internet-connected system is ever 100% secure, and we won't pretend otherwise. We don't currently hold a formal third-party certification such as SOC 2. What we can do is show you exactly how the product is built — everything above is a true description of the protections in place — and walk your team or IT/security contact through it in detail.
Contact
Questions or to report a concern: [email protected]