Security

Overview

AgentAid is designed with security, reliability and data integrity in mind.

The platform uses modern cloud infrastructure and security best practices to ensure that election finance data is stored and processed safely.

All campaign records, uploaded documents and exported return packages are protected using secure cloud services and strict access controls.

This page provides a high-level overview of the security measures used across the application.

Data Protection

All information stored within AgentAid is protected using secure cloud infrastructure.

Election data is stored in managed cloud databases designed to provide reliability, encryption and controlled access.

• All data is encrypted in transit using HTTPS.
• Data stored in the platform database is encrypted at rest using managed encryption services.
• Secure cloud storage services are used for document storage.
• Access to stored data is restricted using strict authentication and permission rules.

This ensures that campaign data, financial records and supporting documents remain protected.

Authentication and Access Control

Users must be authenticated before accessing the AgentAid platform.

Authentication systems verify user identity and restrict access to authorised users only.

• Users must sign in using a registered account.
• Multi-factor authentication (MFA) can be used to provide additional account protection.
• Permissions are enforced so users can only access elections they own or have been granted access to.
• Shared elections remain restricted to invited users.

This ensures that campaign data is only accessible to authorised individuals.

Database Security

AgentAid stores election data in secure managed cloud databases.

The database infrastructure includes multiple layers of security controls.

• Database access is restricted through server-side security rules.
• Direct public access to the database is not permitted.
• Authentication checks are enforced before data can be read or written.
• Cloud provider infrastructure automatically manages encryption and backup protection.

This layered approach helps prevent unauthorised access to stored campaign records.

Document Storage

Uploaded receipts and generated return documents are stored securely within the platform’s cloud storage environment.

Files are protected using storage access rules and authentication checks.

• Receipts uploaded to expenses are stored in secure cloud storage.
• Exported return packages are generated on demand.
• Temporary download links are used when export files are generated.
• Access to stored files requires authenticated access to the platform.

This ensures that financial evidence and supporting documents remain protected.

Export Integrity

Each election return package generated by AgentAid is assigned a unique cryptographic hash.

This hash is recorded alongside the export job within the system audit records.

The hash allows verification that an exported return package has not been modified after it was generated.

• Each export package receives a unique identifier.
• The generated package hash is recorded in the audit ledger.
• The metadata files included in the export allow verification of the package contents.

This mechanism helps maintain trust in exported election return documents.

Audit Logging

AgentAid maintains audit records for export operations and system activity.

These records provide transparency regarding when election return packages are generated.

Audit records may include:

• Export job identifiers
• Generation timestamps
• Export package hash values
• Application version information

These logs help provide a traceable history of export activity.

Infrastructure Security

The platform runs on modern managed cloud infrastructure designed to provide high levels of security and reliability.

The infrastructure provides:

• Secure cloud data storage
• Managed database encryption
• Network isolation between services
• Automatic system monitoring
• Infrastructure scaling and resilience

This managed environment helps protect the platform from unauthorised access and infrastructure vulnerabilities.

Responsible Use

AgentAid is designed to assist candidates and election agents with preparing and organising election returns.

The platform helps manage campaign finances and generate return documentation.

Users remain responsible for ensuring that submitted returns are accurate and submitted within the statutory deadlines required by election law.

AgentAid does not replace statutory responsibilities but provides tools to support compliance and record management.