Security

Mintline is ADA CASA Tier 2 verified, meeting rigorous security standards for cloud applications that access sensitive user data.

What is ADA CASA?

The Cloud Application Security Assessment (CASA) is a security framework developed by the App Defense Alliance (ADA), an industry collaboration founded by Google to ensure app safety.

CASA provides a consistent security assessment for cloud applications that request access to sensitive user data. It establishes baseline security requirements that applications must meet to protect user information.

Tier 2 certification involves a comprehensive security assessment by an authorized lab, verifying that the application meets all CASA security requirements through code review, penetration testing, and architecture analysis.

CASA Security Requirements

As part of our Tier 2 certification, Mintline has been verified to meet the following security requirements:

Secure authentication and session management
Data encryption in transit and at rest
Vulnerability management and patching
Secure software development lifecycle
Incident response procedures
Access control and authorization
Logging and monitoring
Data retention and deletion policies

How We Protect Your Data

AES-256 Encryption

All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption.

EU Data Residency

All customer data is stored exclusively within European Union data centers.

No Third-Party Sharing

Your data is never shared, sold, or transferred to third parties for any purpose.

AWS Infrastructure

Built on AWS with SOC 2 Type II certified infrastructure and security controls.

Gmail Data Access

Limited, Read-Only Access

Mintline requests read-only access to your Gmail account specifically for extracting receipt emails. We use Google's restricted scopes and only access emails that match receipt patterns (order confirmations, invoices, etc.).

•Personal emails are never accessed or stored
•No write or delete permissions requested
•You can revoke access at any time from Google settings

Security Questions?

If you have questions about our security practices or need additional documentation for compliance purposes, please contact us.

security@mintline.ai →

What is ADA CASA?

The Cloud Application Security Assessment (CASA) is a security framework developed by the App Defense Alliance (ADA), an industry collaboration founded by Google to ensure app safety.

CASA Security Requirements

As part of our Tier 2 certification, Mintline has been verified to meet the following security requirements:

Secure authentication and session management

Data encryption in transit and at rest

Vulnerability management and patching

Secure software development lifecycle

Incident response procedures

Access control and authorization

Logging and monitoring

Data retention and deletion policies