Security

Everything we do begins with an S and ends with a Y.

Security At Cloudanix

We hold ourselves to our own high standards, as well as those established by the industry. Our very existence is to build trust across the internet by helping other companies to improve their Operational Excellence and Security Posture. Our core offering is Security, and it is also at the core of what we do at Cloudanix. We work with independent experts to verify our own security and compliance. We have already achieved certification against stringent standards.

Our Certifications

Cloudanix is ISO 27001 certified. Please get in touch with [email protected] if you have any questions for us.

Access Control

Exclusive Github and Google SSO for user account access. Two-factor authentication and policy-based access for internal controls.

Encryption at Rest and Transit

All data is encrypted at application level using AES-256 GCM encryption, and served over secure connections to customers.

Secure Payment Processor

We use Stripe as our payment processor. Stripe is certified to PCI Service Provider Level 1. This is the most stringent level of certification available in the payments industry.

Encryption of Tokens and Sensitive Data

Access token, oauth tokens and other sensitive information is encrypted and stored. At no point they are transmitted or logged as plain-text. Lastly, there are multiple encryption keys layered on top of each other and stored in distributed system, so that there is no single point of failure to get access to these tokens.

Back Ups and Monitoring

On an application level, we produce audit logs for all activity, ship logs to GCP and Sentry for analysis. Actions taken on console.cloudanix.com are also logged for analysis purposes.

Data Center & Network Security

Cloudanix offers Multi-Cloud solution and thus we use all the 3 major Cloud providers: AWS, Azure and GCP. We also are hosted in multiple-regions for Business Continuity.