Trust & Security

How we protect your dispatching data

This page is maintained by the Dispatch Truck Core team to answer common security and privacy questions about the application. It describes the controls we have enabled today. It is not an independent certification or audit attestation.

Authentication & access
How accounts are protected.

Email + password sign-in with optional two-factor authentication (TOTP) available from the profile screen.

Sessions are single-device: signing in on a new device ends the previous session.

Password rotation is enforced periodically for dispatcher accounts.

Tenant isolation
Your data stays yours.

Every dispatcher's loads, drivers, vehicles, carriers and accounting data are scoped to their account through database-level row-level security policies.

Drivers only see the loads assigned to them.

Encryption in transit
Traffic between you and the app.

All traffic to the application and its backend is served over HTTPS/TLS.

Driver onboarding links are short-lived single-use tokens.

Data you control
Retention & deletion.

You can update your profile information at any time from the Profile page.

Account deletion is available from the Profile page; on request we remove or anonymize associated dispatcher data.

Subprocessors
Services we rely on.

Hosting and database: Lovable Cloud (Supabase).

Email delivery: Resend.

These providers process data on our behalf solely to operate the service.

Reporting a security issue
We want to hear from you.

If you believe you have found a vulnerability, please email security@dispatchtruckcore.com with steps to reproduce. We will acknowledge your report and follow up.

Last updated: 7/10/2026. This page describes app-owner practices and is not a substitute for any contractual or regulatory document.