In the post GDPR days, writing a statement like “keeping your data secure is our number-one priority” isn’t enough. While it’s hard to prove this statement objectively, we can start with a detailed description of what security measures we have taken to protect Voucherify from malicious activity. And being an engineering-driven company we set the bar high.
We work hard every day to keep your data secure, and our security policy covers several key areas. Check below for more info, or take a look at our security datasheet. You can also contact us if you have any questions.
- AWS cloud security (Virtual Private Cloud). Read more about the AWS cloud here.
- Encryption (AWS KMS, TLS, data encryption at rest).
- Regular PCI scans, security audits, and penetration tests.
- DDOS protection (syn cookies, connection limiting).
- Login brute-force protection.
- An anomaly detection system (Prometheus, Grafana, New Relic, CloudWatch, Pager Duty).
- Role-based access and policy enforcement (AWS IAM, single-host-to-server VPN model, local machine encryption).
- Disaster Recovery Program (Kubernetes-based 5-minute platform deployment).
- GDPR, CCPA compliance.
- Reliability and backup (RAID class hardware, AWS S3).
- 2-factor authentication, password policies, SAML (coming soon).
We’ve partnered with Amazon Web Services (AWS) which provides the hardware and infrastructure to support Voucherify’s promotion management platform. Amazon enforces security through a variety of methods as covered in their Security Whitepaper. In short, the buildings, servers, and infrastructure of their services is the same as their multi-billion dollar Amazon.com retail business. This gives confidence that the foundation of infrastructure is protected.
This isn’t a reason to let our guard down. With security being ingrained in the Voucherify platform from day one, we continually add measures on each layer of our platform. Together with the AWS Cloud Security policy, they let us commit to providing our customers with a reliable and secure application.
Please, visit this link to download Voucherify Security Model