The most important thing to state at the start is that Jotto is a private communications tool. Our customers use Jotto to privately share confidential information with their teams/companies. We take this confidentiality very seriously. Each team "instance" is silo-ed, both in terms of content and user authorization. The content is available only to authorized users (as set by the team's administrators). There is no way to "open up" a Jotto instance to the public, and there is no way to share content across Jotto instances.
All Jotto content is stored in a secure database hosted on Heroku (owned by Salesforce.com) and on Amazon Web Services. All information is transmitted securely over https. Our use of cloud infrastructure services allows for excellent security, uptime and scalability.
Every Jotto instance is private and can only be accessed by authorized users, as determined by the instance administrator. Administrators can choose to authorize users in two ways: 1. through Google authorization for a domain, or 2. by inviting user emails on an individual basis. All passwords are stored in an encrypted format.
We do look at metrics on overall usage, i.e. the number of active teams, new posts, and new comments/reactions. However, for the avoidance of any doubt, we'll repeat that we don't look at the content of those posts/comments/reactions, just aggregate numbers.
Jotto automatically runs our own database backups to ensure continuity in the event of a problem. We also enable our customers to download a structured (json) copy of their posts.