Who this article is for
Owners
Committee members
Strata managers
Cohabit experts
Internal team members
Anyone who wants to understand how the Cohabit platform is secured.
What this article covers
How Cohabit secures the platform
Access control and authentication
Monitoring and incident response
What you can do to keep your account secure
How Cohabit secures the platform
Cohabit is built and operated using modern security best practices to help protect data and ensure platform reliability.
Secure hosting environment
Cohabit is hosted within reputable cloud infrastructure providers and uses multiple layers of protection, including:
Network segmentation and firewalling to limit exposure
Hardened environments with restricted administrative access
Separation between application, database, and file storage systems
Encryption
Cohabit protects data both in transit and at rest.
In transit:
Data sent between your browser or mobile app and Cohabit is protected using TLS/SSL encryption.At rest:
Stored data, including databases and uploaded files, is encrypted using industry-standard methods.
Application security
To reduce risk and maintain platform integrity, Cohabit:
Regularly applies security patches and dependency updates
Follows secure development and deployment practices
Restricts access to internal systems to authorised personnel only
Access control and authentication
Cohabit uses layered access controls to ensure users only see information they’re authorised to access.
Role-based access
Access is determined by user role, such as:
Owner
Committee member
Strata manager
Expert
Each role has access to different features and levels of data. Within organisations, admin users can manage access to buildings and information.
Account-level security
Cohabit supports common account security protections, including:
Unique logins for each user
Strong password requirements
Session management (sign-in, sign-out, timeouts)
Optional multi-factor authentication where available
Monitoring and incident response
Cohabit actively monitors the platform to help identify and respond to issues, including:
Logging of key system and access events
Automated monitoring and alerting for unusual activity
Internal processes for reviewing and managing incidents
If a security incident occurs, Cohabit will:
Investigate and contain the issue
Assess impact and recover systems as required
Notify affected parties where appropriate
What you can do to keep your account secure
Security is shared between Cohabit and its users. You can help by:
Using a strong, unique password
Enabling multi-factor authentication if available
Not sharing your login details
Logging out on shared or public devices
Keeping your browser, operating system, and apps up to date
Contacting Cohabit if you suspect unauthorised access
FAQs
Is my building and owner data secure in Cohabit?
Yes. Cohabit uses encryption, access controls, and secure hosting practices to protect data.
Can anyone at Cohabit see my data?
Only authorised Cohabit staff can access data when required to operate the platform or provide support. All access is controlled and logged.
What should I do if I think my account has been compromised?
Change your password immediately and contact Cohabit Support. If you’re part of an organisation, notify your internal admin as well.
Does Cohabit support multi-factor authentication (2FA)?
Where available, we strongly recommend enabling additional verification methods in your account settings.