Skip to main content

Security & Trust

Last updated: 26 June 2026

At BiteSpaces, protecting the people who use our platform — community space owners and mobile food vendors across Australia — is a responsibility we take seriously. This page explains, in plain terms, how we protect your data today and where we are heading.

An honest note on certifications

We want to be transparent: BiteSpaces is not currently SOC 2 or ISO 27001 certified. These are independent, audited attestations that take time to earn. We have built a strong technical security foundation and are actively working through a structured readiness program toward those standards. We will only ever claim a certification once an accredited auditor has issued it.

How we protect your data today

Encryption

Authentication & access

Application & infrastructure security

Payments

Privacy

Our roadmap toward SOC 2 & ISO 27001

Becoming audit-ready is a journey of both technology and process. We have documented an internal compliance program — including security policies, a risk register, incident response, and vendor management — and are working through it methodically. Current focus areas include:

A note on vendor documents

BiteSpaces provides tools for vendors to share compliance documents (such as permits, insurance, and Working With Children Checks) with space owners. We securely store and transmit these documents, but BiteSpaces does not independently verify them. Space owners are responsible for reviewing documents and satisfying their own due-diligence and regulatory obligations.

Reporting a security issue

We welcome reports from security researchers and users. If you believe you have found a vulnerability, please contact us at security@bitespaces.com.au. You can also review our security.txt. Please give us a reasonable opportunity to investigate and address the issue before public disclosure.

Questions about our security or privacy practices? Reach out at security@bitespaces.com.au.