Client Data Protection

Security and privacy are essential when managing financial portfolios. Because StreetLoans operates as an offline-first application, all your borrowers' information, balances, and payment histories are stored directly on your physical mobile device.

This guide explains how StreetLoans keeps your business data safe and outlines best practices to protect your physical device.

Automatic Database Encryption

You do not need to configure any security settings manually; StreetLoans secures your ledger out-of-the-box:

  • Military-Grade Local Encryption: The application automatically locks its local database file using high-security encryption. All client names, identification numbers (Cédulas), addresses, and balance figures are encrypted before they are saved to your phone's memory.
  • Loss or Theft Protection: If you lose your phone or if it is stolen in the street, your business records remain completely protected. An unauthorized user connecting your phone to a computer will only see scrambled, unreadable characters. The database can only be accessed through the authorized StreetLoans app interface using your secret credentials.
  • Secure Identification Storage: Photos taken of clients and Cédula documents are isolated in secure application storage folders, preventing them from appearing in your phone's public photo gallery.

Best Practices for Mobile Security

While StreetLoans keeps your database locked, physical device security is your responsibility. Follow these daily practices to keep your ledger secure:

1. Set a Strong Phone Screen Lock

Always protect your mobile device with a secure lock screen:

  • Use a strong PIN (at least 6 digits), a complex Pattern, or enable Fingerprint / Face ID recognition.
  • Never use easily guessable PIN codes like 0000, 1234, or your birth year.

2. Safeguard Your App Credentials

  • Choose a strong password for your StreetLoans account.
  • Never write down your login password on physical paper or keep it in a plain text file on your phone.
  • Never share your login credentials with borrowers or other field agents.

3. Keep Backups Off the Device

Backing up your database is vital in case your phone is physically damaged. However, since backup files contain financial histories:

  • Follow our Backups Guide to export your JSON/ZIP backups regularly.
  • Once exported, transfer the backup file to a secure cloud drive (like Google Drive or iCloud) or a safe computer, and delete the copy from your phone's public download folder.

4. Lock Your Screen When Not in Use

  • Set your phone screen to automatically lock after 30 seconds of inactivity.
  • Before placing your phone in your pocket or mounting it on your motorcycle/vehicle, press the power button to lock the screen manually.
App Installation