Log in
Go to app
User Name
Upgrade Help Center

FAQ: Text Data Security

Who has access to the servers?

Because Text uses a cloud infrastructure model, our staff does not have physical access to servers. Access to customer data is strictly limited to authorized personnel who need it for their work and is governed by confidentiality agreements and strict internal security policies.

How is my data protected in transmission?

All connections to the Text Services are encrypted using 256-bit TLS (versions 1.2 and 1.3).
Communication with our systems is routed through Akamai (Content Delivery Network).

What security certifications do you rely on?

We use trusted cloud providers that comply with internationally recognized security standards.

How can I retrieve my chat history or personal data?

You can request your stored chat history or personal data at any time by emailing support@text.com. Please use the email address associated with your Text Services subscription to verify your identity. Data will be provided within 30 days.

What domains do I need to whitelist for Text Services?

To ensure the Text ServicesApp works properly, please add the following domains to your firewall exceptions:

*.static-text.com

*.text.com

*.files-text.com

cdn.livechatinc.com 

*.livechat.com

*.livechatinc.com

*.livechat-static.com

*.recurly.com

*.livechat-files.com

For webhooks, please whitelist:

185.177.172.0/22

Please note: Our CDN and anti-DDoS infrastructure rely on tens of thousands of edge servers, so we cannot provide a full IP list. We recommend filtering traffic by domain name rather than IP.

What internal security measures does Text follow?

We follow strict security and monitoring procedures, including:

  • Documented security standards and policies

  • Mandatory confidentiality agreements for personnel

  • Training and awareness programs

  • Role-based access control for staff

  • Segregation of customer data to prevent unauthorized access

What technical safeguards are in place?

  • Annual penetration testing of Text Services

  • Web Application Firewall (WAF) to mitigate DDoS attacks

  • Mobile Device Management (MDM) and Endpoint Detection & Response (EDR) for staff devices

  • Software Supply Chain scanning for vulnerabilities

  • GRC (Governance, Risk & Compliance) solution for risk management

  • Vendor management program ensuring we only cooperate with trusted partners

How is customer data compartmentalized?

Customer data is logically separated within our systems to prevent unauthorized cross-access between clients. Access requires unique administrator credentials and follows strict, based-on-permission controls.

What password policy applies to Text users?

  • Each user has a unique ID

  • Passwords must be at least 12 characters long and include:

    • 1 number

    • 1 capital letter

    • 1 special character

  • Two-factor authentication (2FA) is available and strongly recommended

  • All login status changes are logged.