We take the hosting and security of your data seriously. Therefore, we have put the following measures in place.
Our service is hosted on Amazon EC2. Their cloud service employs redundant components and allows us to easily grow our infrastructure.
We perform full server backups every week and differential backups every day and store them using the redundant infrastructure of Amazon S3 on a daily basis. Lastly, we do database backups every hour that are immediately sent to Amazon S3. We never want to lose any of your data, but in the event of a data loss event on our live service, we should lose no more than an hour of data given these procedures.
We monitor the performance and availability of our service using New Relic. New Relic allows us to see how our service is performing in real time and notifies us if the service fails for any reason. New Relic also lets us to dig deep to find and fix any performance related issues that may appear. We also use another service called Airbrake to track application exceptions. Fixing application issues early greatly improves security as well as improves availability.
Prior to service updates, we employ a code scanning tool that notifies us of potential security vulnerabilities before we release an update to our service.
Credit cards are never stored, transmitted, or processed on our systems. All credit card actions take place with our preferred gateway provider Braintree Payment Solutions. Braintree is a Validated Level 1 PCI DSS Compliant Service Provider.
If you have any questions about this area, please feel free to contact Support.