When you register your device for Push Notifications, we transmit your OAuth token via HTTPS to our Push Server. Your OAuth token is used to periodically poll GitHub for activity.
Our Push Server is entirely hosted on Heroku, which keeps the base platform up-to-date from security vulnerabilities.
We check inputs for the correct types and take steps to mitigate things like SQL Injection attacks.
If there is ever a detected security breach we'll revoke Trident's GitHub API token access directly, we'll also alert users of this breach through Twitter, Website updates and the E-mail address you used to register for Push Notifications.
Some Robots Ltd does not accept any liability with lost or compromised data when using Git Trident.