Privacy & Encryption
Your data in BridgeApp is private to your team and protected by encryption, end to end. This page explains the three ideas that make that true: isolation, encryption, and — for organizations that need it — holding your own keys.
Workspace isolation
Section titled “Workspace isolation”Every workspace is its own sealed environment. The data you create — messages, tasks, pages, databases — belongs to that workspace and is invisible to every other workspace on the platform. This is what “multi-tenant” means in plain terms: many organizations can use BridgeApp, but each one lives behind its own wall and can only ever see its own world.
Inside a workspace, who can see and do what is governed by roles and permissions, and those rules are enforced by the server — not merely hidden in the interface.
Encryption
Section titled “Encryption”Your information is encrypted in transit (as it travels between your device and BridgeApp) and at rest (as it’s stored). Encryption is the digital equivalent of sending everything in a sealed, tamper-evident envelope and storing it in a locked vault — even if someone got hold of the raw storage, the contents wouldn’t be readable.
Bring your own keys (BYOK)
Section titled “Bring your own keys (BYOK)”For organizations with the strictest requirements, BridgeApp supports BYOK — bring your own keys. Normally, the platform manages the encryption keys that protect your data. With BYOK, your organization holds those keys instead. That means access to your data ultimately depends on keys you control, which is exactly what regulated industries — financial, legal, compliance, and government-adjacent teams — often require.
BYOK is part of the Enterprise plan, and pairs naturally with private-cloud or on-premise deployment.
No quiet sharing
Section titled “No quiet sharing”BridgeApp’s stance is straightforward: your data is yours. The platform is designed to keep your information within your workspace and your chosen deployment, not to hand it off to third parties.