Security and privacy are top priorities at Travefy. Travefy utilizes industry-standard data security practices, and has a dedicated team that focuses on data protection and platform security.
Here's a brief overview of Travefy's security and systems:
PCI-Compliant: First and foremost, Travefy is PCI Compliant. Know that your payment details and those of your clients are secure.
GDPR Compliant: We're also GDPR Compliant. You can do business in the EU with confidence.
Encryption:
All data is encrypted at rest. Our databases are fully encrypted with keys private to Travefy.
And all data is encrypted in transit. We use up-to-date TLS standards to encrypt data at every stage: from the database to our servers to all of your devices.
Security Scanning: Travefy.com is scanned and tested quarterly by a third party to ensure security.
Penetration Testing: Travefy regularly conducts penetration testing to ensure system integrity and security.
Third Party Audits: Travefy’s platform is reviewed, audited, and tested regularly by third party security experts.
Data Storage: We use Amazon Web Services to host our services and store your data. AWS is the leading cloud computing provider and has a proven record of top-tier security. All data resides in the United States.
Backups and redundancy: We make use of redundancy for all of our servers, databases, and storage. Should a server or many lose connectivity, there are others with independent power and connectivity to take their place. Database snapshots are taken daily.
Multi-Factor Authentication (MFA): All Travefy user accounts have the option to turn on Multi-Factor Authentication. Additionally, MFA is required for accounts that utilize secure credit card authorization or encrypted storage.
Reliability and System Monitoring: Travefy is monitored by a variety of systems to ensure health, reliability and security. An engineering team is on call 24/7 to handle incidents.