Skip to main content
All CollectionsSupport GuideSecurity & Privacy
Sitemate Network and Application Security
Sitemate Network and Application Security

Learn about our security protocols for network and application security

Erin Clazie avatar
Written by Erin Clazie
Updated over 10 months ago

Data Hosting

  • Sitemate runs on AWS's global cloud infrastructure.

  • Sitemate utilizes Platform as a Service (PaaS) services, due to their enhanced security and safety.

  • The system utilises a multi-tenant architecture.

  • Geographic Data Residency Controls and control over where your data is hosted and stored is available on the Enterprise Pricing Plan which can be seen here.

Data Safety & Backup

  • Data is processed & stored in PaaS database services, with live fail-over replicas. For example, the form database service has one write & 2 read nodes.

  • Snapshot backups are taken daily (stored for 7 days) & weekly (stored for 4 weeks).

  • Photos & videos are stored within Amazon S3 and stored across at least three devices in a single AWS Region.

  • Failover & backups are tested as per Sitemate DR/BCP policies.

Cloud Management

  • AWS Config is used to monitor compliance and configuration across all Sitemate Services, enabling assessing, auditing, and evaluating configuration of all Sitemate resources.

Encryption

  • All data is encrypted at rest (AES256-CBC) & in transit (TLS 1.2+).

NIST CSF

  • NIST CSF provides a broad, risk-based approach for organizations to manage cybersecurity risks. It provides a structured and comprehensive approach to managing cybersecurity risks and enhancing the company's resilience against potential threats.

  • NIST Cybersecurity Framework helps Sitemate stay proactive and prepared for evolving cyber threats, safeguarding customer data.

Did this answer your question?