Security & Compliance

FiWi Community handles sensitive data — financial records, personal information, and visitor logs. We take that responsibility seriously. Here's how we protect your community's data.

Data Encryption

  • In transit: All data is encrypted using TLS 1.2+ (HTTPS) between your devices and our servers. No exceptions.
  • At rest: All stored data is encrypted using AES-256, the same standard used by banks and government agencies.
  • Passwords: Resident and staff passwords are hashed using industry-standard algorithms — we never store plaintext passwords.

Infrastructure & Hosting

  • Cloud-hosted: FiWi Community runs on enterprise-grade cloud infrastructure with automatic scaling and redundancy.
  • Global CDN: Static assets are served through Cloudflare's global network for fast, reliable access across the Caribbean.
  • Automated backups: Data is backed up regularly with point-in-time recovery capabilities.
  • DDoS protection: Cloudflare provides always-on DDoS mitigation at the network edge.

Compliance

  • Jamaica Data Protection Act: FiWi Community is designed to comply with Jamaica's Data Protection Act, including data subject rights (access, correction, deletion, portability).
  • Registration (Shared Community) Act 2026: Our financial tracking, reporting, and document management tools help community corporations meet the record-keeping and governance requirements under the new legislation.
  • Strata Titles Act: Built-in compliance tools for strata corporation reporting and reserve fund obligations.

Access Controls

  • Role-based access: Administrators, board members, management staff, security guards, and residents each see only what they need.
  • Audit logging: All administrative actions are logged with timestamps and user identification.
  • Session management: Automatic session expiration and secure token-based authentication.

Visitor Data & Privacy

  • Minimal collection: We collect only the information needed for gate entry — visitor name, vehicle details, and host authorization.
  • Digital audit trail: Every gate entry and exit is logged, providing your community with a complete security record.
  • Resident consent: Visitors are processed under the authorization of the inviting resident — no unsolicited data collection.

Financial Data Security

  • QuickBooks integration: Financial data syncs securely via authenticated API connections. FiWi does not store payment card numbers.
  • Read-only balances: Residents can view their balances and invoices but cannot modify financial records.
  • Segregated data: Each community's data is logically separated — one community cannot access another's information.

Responsible Disclosure

If you discover a security vulnerability, please report it to [email protected]. We take all reports seriously and will respond promptly.

Questions about security?

Our team is happy to walk you through our security practices and answer any questions about how we protect your community's data.

Contact Us