Customer data is stored with encryption at rest using better keys which are periodically rotated as per industry best practices.
SpotDraft uses a PCI-compatible encryption scheme for extra sensitive data like key points in contracts. SpotDraft also uses Hashicorp Vault, where each contract has a unique encryption key generated and backed by Google Cloud KMS. This data is also encrypted at rest and in transit before being stored in the database.