Trust, Security & Privacy

Teradia is operated by the Teradia team on top of managed hosting and database services. Platform-level capabilities (such as encrypted connections and database access controls) are provided by our infrastructure providers, while application-level policies, account hygiene, and how you handle counterparty data are the responsibility of the Teradia team and of each user.

• Sign-in is provided via email/password and Google sign-in.
• Sessions are managed by our authentication provider; password handling is not done by Teradia application code.
• Admin actions inside Teradia require a server-verified admin role; client-only role flags are not trusted.

• Listings, RFQs, shipments, hubs, notifications, fleet records and verification documents are protected by row-level security so users can only read and modify rows they are entitled to.
• Phone numbers and other contact details on your profile are not readable by other users; you control them from your Account page.
• Real-time notification streams are scoped per user; you cannot subscribe to another user's notifications.
• Only existing admins can grant or revoke admin roles.

• Account information you provide: name, company, country/region/city, phone, bio and avatar.
• Marketplace content you create: listings, RFQs, responses, shipments, hub membership and pooled listings.
• Verification artifacts you upload (e.g. business registration, ID, fleet documents) stored in a private bucket and only readable by you and reviewers.

Teradia relies on managed providers for hosting, database, authentication, file storage and AI assistance used to power matching. We do not sell user data to third parties. If you need a current list of subprocessors for a procurement review, please contact us using the address below.

You can edit or delete the listings, RFQs and verification documents you create from inside the app. To request deletion of your account or a copy of the data associated with it, contact us using the address below and we will respond within a reasonable timeframe.

To report a vulnerability or a security concern, email security@teradia.com. Please include steps to reproduce; do not include real production data in the report.

For privacy questions, deletion requests, or to update your information, email privacy@teradia.com.

Teradia does not currently claim independent certifications such as SOC 2, ISO 27001, HIPAA, or PCI DSS. We will update this section if and when formal certifications are obtained.