SECURITY

Pilot-stage security, stated plainly.

The controls AcreLight uses today, plus the limits we will not disguise.

ACCESS

Read-only Deere authorization

AcreLight uses Deere's authorization flow with read-only scopes. It cannot change your Operations Center records, and you can revoke the connection from Deere.

SECRETS

Encrypted tokens and passwordless sign-in

Deere tokens are encrypted at rest. Customer sessions use secure cookies and single-use email sign-in links rather than stored passwords.

PROCESSING

Private high-resolution processing

Raw field archives and full-resolution points are processed in a private environment. The customer app serves sampled maps, reports, and computed summaries.

AUDITABILITY

Changes leave a trail

Account, pricing, connection, and processing changes are recorded so the farm and AcreLight can review what happened and when.

INFRASTRUCTURE

Hosted on AWS in the United States

The production service runs on AWS in us-east-1. Cloud, email, and model providers may process limited data under contract as part of providing AcreLight.

CURRENT LIMIT

No SOC 2 claim

AcreLight is a pilot-stage company and is not SOC 2 certified today. We would rather describe the controls that exist than borrow a security slogan we have not earned.

REPORT A CONCERN

Security questions go directly to AcreLight.

Send concerns or implementation questions to support. Include no field data or credentials in the first message.

Email security