Skip to main content

Privacy & Security at OneFeather

Updated

In this article:

 

General Security FAQ

Security is our top priority here at OneFeather. Our system is built with multiple layers of protection, including end-to-end encryption, secure access controls, robust user verification, and advanced threat detection. We also maintain SOC 2 type II Certification through Prescient Security, ensuring we follow strict security policies and undergo regular third-party security audits. 

Has your system been reviewed by independent security experts?

Yes. Our platform undergoes regular independent security audits by Prescient Security and penetration testing by Websec Canada to ensure compliance with industry-leading security standards.

How do you stay current with evolving security threats?

We continuously update our security measures to stay ahead of emerging threats. Our team regularly assesses and improves protections to maintain a secure and trustworthy voting process. We follow OWASP (Open Web Application Security Project) guidelines and utilize industry-standard security software, which provides real-time alerts about the latest threats and vulnerabilities in the cybersecurity landscape.

 

Data Privacy & Protection

How do you protect my personal information?

We treat your data and privacy with the utmost care. All personal and community information is encrypted and stored securely. We will never share or sell user, voter, or Nation information to third parties unless required by law, or if you have provided explicit consent to access a specific partner service. Our system follows strict privacy protocols to ensure your information remains safe at all times.
 
If sharing Personally Identifiable Information (PII) is necessary to access a partner service (such as identity verification or receiving a disbursement), we will always inform you and ask for your consent before proceeding.
 
All of our service partners must comply with our rigorous data privacy standards. Any data shared temporarily with a partner cannot be used for any purpose other than the service you agreed to, and it can never be shared or sold.

Where is voting data stored?

All voting data is stored on Canadian-based servers, ensuring full compliance with Canadian privacy laws. As part of our commitment to Indigenous data sovereignty, OneFeather ensures that all data is managed in a way that respects Indigenous governance and control. Voting data is encrypted both in transit and at rest for maximum security, and we do not store any data outside of Canada.

What happens to my personal data after a voting event has ended?

Once a voting event is complete, data is securely archived or deleted according to our privacy policies. We do not retain any voter data beyond what is legally required in Canada.

Can you delete my account and remove my personal data?

We’re sorry to see you go! If you would like to close your OneFeather account and have your data removed, please contact our Customer Service Team to begin the process.
  • Please note: We may be unable to delete certain information if we are required by law to retain records for compliance or regulatory reporting.
  • Nation-owned data: Any member or citizen data added by a Nation or community is owned and controlled by that Nation. OneFeather does not have the authority to remove this data.

 

Voting Security

See Voting Security.

 

Related articles