Security Policy

Customer Integration Security Policy

This document outlines our recommended approach for data integration of customer data. Every use case is different, but the following items should cover most scenarios:

Using AWS SDK and connected to the AWS Identity and Access Management platform. We will provide AWS credentials to access the dedicated bucket. AWS provides SDKs in C++, Go, Java, Javascript, .Net, NodeJS, PHP, Python and Ruby.

If the client is not familiar with AWS and S3, we will provide a secure SFTP server to access the S3 bucket transparently. We will provide Username / Password credentials to login to the SFTP server. All credentials will be store in AWS Secret Store manager.

One time secrets - as soon as a secret is decrypted, it will only be shown once and deleted afterwards;

Securely encrypted – using modern, state-of-the-art encryption libraries and algorithms based on OpenSSL;

Expiring secrets - a secret will automatically disappear after a specified lifetime, ranging from 5 mins up to 7 days;

Secure connection - the public website is completely protected by an SSL certificate, the Internet's leading encryption technology