Security
Your Gallery's Data, Handled With Care
We take security seriously so you don't have to think about it. Here's how we keep your data safe.
Your Data Is Protected
Crafted Call runs on AWS with encryption in transit (TLS 1.2+) and at rest (AES-256). Databases are backed up daily with point-in-time recovery. Your data is stored in the US and never leaves our infrastructure.
Payments Are Secure
All payment processing is handled by Stripe. We never see, store, or have access to credit card numbers. Stripe is PCI DSS Level 1 certified — the highest level of payment security.
Privacy by Default
No ads, no data brokering, no third-party analytics selling your data. Artist submissions, gallery information, and personal details belong to you — not us. We collect only what's needed to run the platform.
Access Controls
Role-based permissions ensure team members only see what they need. All admin actions are logged. Authentication is handled through AWS Cognito with support for multi-factor authentication.
Found a security issue?
If you discover a vulnerability, please report it responsibly to security@craftedcall.com. We take every report seriously and will respond promptly.
Ready to get started?
Join galleries that trust Crafted Call to manage their calls, jury review, and exhibitions.