Security

WWHITEBOARDD uses layered safeguards designed to protect accounts, sessions, board memberships, invitations, and board content. The product is built around authenticated access, board-level membership, least-privilege access, and operational monitoring.

WWHITEBOARDD may support password sign-in, magic links, Sign in with Apple, two-factor verification, trusted devices, logout controls, and session expiration. Available protections may vary by account state and rollout stage.

Users are responsible for securing their email account, Apple account, device passcode, trusted devices, and any recovery methods used to access WWHITEBOARDD.

On supported Apple devices, WWHITEBOARDD uses platform security features such as Apple Keychain for sensitive session material. The app avoids storing passwords in plain text on the device.

If your device is jailbroken, compromised, shared, or not protected by a passcode, local account and board data may be less secure.

WWHITEBOARDD is designed to use HTTPS/TLS for network traffic between the app, website, APIs, and supporting services. Access to production systems is limited to authorized personnel and is intended to follow least-privilege operational practices.

Hosting, database, monitoring, email, and security vendors may be used to operate and protect the service. Vendor access is limited to what is reasonably needed for the service to function.

Board content is intended to be visible only to authenticated users with access to the relevant board. Board owners or permitted members may invite people, remove people, and manage access depending on the feature set available at the time.

Collaborators can see content posted to boards they can access. Do not post secrets, regulated data, or sensitive personal information unless every board member is allowed to see it.

We may log security events, authentication events, sync activity, errors, rate-limit signals, abuse signals, and support diagnostics to protect users, investigate issues, enforce access controls, and maintain service reliability.

We may suspend, restrict, or terminate access when we believe an account, board, device, integration, or usage pattern creates risk for users, WWHITEBOARDD, DARTRi Labs, or others.

If we identify a security incident affecting WWHITEBOARDD, we will investigate, take reasonable containment and remediation steps, and provide notices where required by law or where we otherwise determine notice is appropriate.

We may preserve logs, account records, board records, support records, and related evidence when reasonably necessary to investigate suspected unauthorized access, abuse, fraud, legal claims, or security incidents.

If you believe you found a security issue, email legal@dartri.com with enough detail for us to reproduce and understand the issue. Do not access, modify, delete, exfiltrate, or disclose data that does not belong to you.

Security testing must avoid service disruption, social engineering, spam, physical attacks, credential stuffing, denial-of-service activity, and attempts to access other users' accounts or board content.

Security is a shared responsibility and no internet-connected product can be guaranteed completely secure. WWHITEBOARDD is provided with safeguards designed to reduce risk, not to eliminate every possible risk.

WWHITEBOARDD is not an emergency service, emergency alert system, public safety service, medical service, law enforcement service, or guaranteed communications channel. In an emergency, contact local emergency services directly.