Security
Treated like a regulator would.
Customer data is handled with the same rigor we expect of operators handling our flags.
Encryption
AES-256 at rest, TLS 1.3 in transit. Keys rotated quarterly via AWS KMS.
Access control
SSO via SAML 2.0 / OIDC. Role-based permissions. Audit logs on every action.
Data residency
US (default), EU on request. Tenant isolation at the database layer.
Incident response
24-hour SLA on customer notification. Public post-mortems within 5 business days.
Penetration testing
Annual third-party assessment. Latest report available under NDA.
Backups
Continuous WAL streaming. 35-day point-in-time recovery. Cross-region replication.
SOC 2 Type II
In progress
ISO 27001
Roadmap
HIPAA
Not applicable
Request our security questionnaire: justin@betignite.us