Security at Otter is extremely important to us. You trust Otter to keep your data secure, and responsible custodianship of your data is our top priority. Learn about Otter's Privacy & Security practices and policies and our FAQs for more information.
- See our Terms of Service to review our contract with you and our security practices.
- See our California Resident Privacy Notice for information on individuals residing in California and compliance with the California Consumer Privacy Act (CCPA).
- See a list of subprocessors with access to certain customer data.
- Otter uses AWS services for its data storage in the AWS region West, United States. Otter uses AWS S3 storage and enables AWS SSE (Server Side Encryption) on data (S3 buckets). It encrypts the key itself with a root key that it regularly rotates. Amazon S3 server-side encryption uses a 256-bit Advanced Encryption Standard (AES-256).