We Take Secuirty Very Seriously
We use SSL/TLS encryption on all our websites and microservices satisfying the highest security and data protection standards. Sensitive Data such as connection credentials is encrypted every time it’s “at rest” in the Reposify platform using industry-standard encryption. In addition, we regularly verify our security certificates and encryption algorithms to keep your data safe.
Reposify’s physical infrastructure is hosted and managed within Amazon’s data centers and utilizes the Amazon Web Service (AWS) technology. Amazon’s data center operations have been accredited under:
- ISO 27001
- SOC 1 and SOC 2/SSAE 16/ISAE 3402 (Previously SAS 70 Type II)
- PCI Level 1
- FISMA Moderate
- Sarbanes-Oxley (SOX)
For additional information see: https://aws.amazon.com/security
Operating system access is limited to Reposify staff and requires a username and key authentication. Operating systems do not allow password authentication to prevent password brute force attacks, theft, and sharing.
Firewalls are utilized to restrict access to systems from external networks and between systems internally. By default, all access is denied, and only explicitly allowed ports and protocols are allowed based on business requirements. Each system is assigned to a firewall security group based on the system’s function. Security groups restrict access to only the ports and protocols required for a system’s specific function.
If you find a bug or security issue on our website, please let us know about it by sending an immediate email to [email protected]
If you’d like more detail about our security processes and practices, please email us: [email protected]