Multi-layered Data Security Approach
Data Encryption
- At Rest: Data is encrypted using AES-256 at both the database and file system levels.
- In Transit: Data is protected with TLS 1.2 or higher standards during transmission between systems and to browsers.
Infrastructure Security
- Hosting: SimpleDocs platform is hosted on Amazon Web Services (AWS) infrastructure, which includes ISO 27001 certified data centers. We use Heroku managed services which sit on top of AWS and provide additional infrastructure security and monitoring services
- Compliance: AWS data centers comply with SOC 2 standards, providing a secure and reliable foundation.
Operational Security
- Monitoring: Industry-leading monitoring tools are utilized to maintain platform security.
- Development Process: Security is integrated into the application development process through code security scans and manual reviews.
- Training: The entire team undergoes regular security training to stay ahead of potential cyber threats.
Certifications and Compliance
- SOC 2 Type I Certified: Achieved in March 2024, with ongoing efforts to attain SOC 2 Type II certification.
- GDPR Compliance: Achieved with the help of partners at Drata, ensuring adherence to data privacy regulations.
Enterprise-Grade Security Measures
Advanced Threat Detection
- Systems: Implementing advanced threat detection systems to identify and mitigate potential security incidents in real-time.
Regular Security Audits
- Audits: Conducting frequent security audits and penetration testing to identify vulnerabilities and strengthen defenses.
Incident Response Plan
- Plan: Establishing a comprehensive incident response plan to quickly address and recover from security breaches.
Access Controls
- Controls: Enforcing strict access controls and multi-factor authentication (MFA) to limit access to sensitive data and systems to authorized personnel only.
Data Backup and Recovery
- Backups: Regularly backing up data and maintaining a disaster recovery plan to ensure data integrity and availability in case of an incident.
More Information
For more detailed information about SimpleDocs’ security measures, visit the [security page](https://simpledocs.com/security) and [trust center](https://trust.simpledocs.com).
---
By following these comprehensive security measures, SimpleDocs ensures that your data is protected at all times.