Our security team logs and monitors all access attempts to our company resources.
Backups for our databases are enabled in AWS.
Customers may contact us at email@example.com for any data deletion requests.
All customer data is stored in MongoDB, AWS, and Stripe. All three provide enterprise-grade encryption-at-rest and encryption-in-transit. Stripe has been PCI certified by third party auditors.
All our internal and external communication in our infrastructure is encrypted using TLS 1.2 or TLS 1.3. Our application will reject requests using weak cryptographic algorithms.
Qualys SSL Labs Report – SSL Report
RealCISO is a fully remote team with no physical offices.
Physical security for our data centers are handled by Amazon Web Services. You can find additional details at:
Separate Production Environment
We use a staging environment that is completely separated from our production environment. Production user data is never used in our staging environment during testing. Developers do not have access to production.