CarbonTrack
Get Started
Enterprise Security

Bank-Grade Security for Your Emission Data

CarbonTrack is built from the ground up with enterprise security principles. We ensure your sensitive operational data is encrypted, isolated, and strictly controlled.

Data Residency & Hosting

All CarbonTrack data is securely stored on Supabase servers physically located in Mumbai, India (AWS ap-south-1 region). This guarantees compliance with Indian data residency regulations for BRSR reporting.

Encryption & Isolation

  • Row Level Security (RLS): Your data is cryptographically isolated from every other company on the platform at the database level.
  • AES-256 Encryption: All data is encrypted at rest using industry-standard AES-256 encryption.
  • SSL/TLS Encryption: All data in transit is secured via HTTPS/TLS 1.2+.
  • Zero Third-Party Sharing: We never sell, share, or expose your raw emission data to third parties.

Access Control

CarbonTrack utilizes strict Role-Based Access Control (RBAC) to ensure only authorized personnel can view or modify data.

  • Owner: Full access to billing, settings, and team management.
  • Member: Access to upload data and generate reports.
  • Auditor: Read-only access that automatically expires after 30 days.

Audit Logging

Every significant action—from data uploads to report generation—is permanently logged in an immutable audit trail. This ensures full traceability and accountability during external BRSR or GHG verification audits.