Built with DocStarAt viaSocket.com, we take data security seriously and follow industry best practices to ensure customer data is protected both in transit and at rest.
1. Data Encryption In Transit:
We use TLS 1.2/1.3 to encrypt all data transmitted between clients and our servers.
All APIs and application endpoints are served over HTTPS with strong cipher suites.
2. Data Encryption At Rest:
Customer data stored in our databases is encrypted using AES-256 encryption.
Sensitive credentials and secrets are further secured using encryption key management systems provided by our cloud providers (e.g., AWS KMS or equivalent).
3. Secrets and API Keys:
We never store plaintext secrets. All API tokens and sensitive information are encrypted before storage.
Vaulting and access control policies are in place to restrict sensitive data access.
4. Access Control:
We use role-based access control (RBAC) to limit internal access to encrypted data.
Data is only accessible by services or personnel with a strict need-to-know basis.
