TRUST

Trust & Compliance

Healthcare practices, financial services, and regulated industries make up a large share of PostKnock's customers. We take that seriously. Below is the plain-English version of how we handle privacy, compliance, and security.

Healthcare

HIPAA Approach

How we handle PHI on postcards, vendor responsibility split, BAA availability, and per-vertical templates that follow HIPAA-aware design rules.

Read →

Privacy

Privacy Policy

What data PostKnock collects, how it's stored, who it's shared with (Lob is our print/mail subprocessor; Stripe handles billing), and how to exercise your rights.

Read →

Legal

Terms of Service

The agreement covering account use, billing, acceptable content, and the limits of postcard mailings under USPS rules.

Read →

Coming

SOC 2 Type II

SOC 2 Type II audit is on the roadmap for our infrastructure. We're already enforcing single-tenant data isolation, encrypted at rest and in transit. Email compliance@postknock.com for our current security overview document.

Questions?

Compliance and security questions go to compliance@postknock.com. BAAs, vendor security questionnaires, and data-processing agreements all start at the same address.