Compliance
SOC 2 Type II
Airgram Inc. has achieved audit certification for Service Organization Controls (SOC 2) since 2022.
SOC 2 is a type of audit report that evaluates an organization's controls related to security, availability, processing integrity, confidentiality, and privacy. Our continued SOC compliance indicates a high level of security and ensures client data is being handled properly.
If you want to check Airgram’s latest report, please contact us at support@airgram.io.
Data and Application Security
Data Center
Airgram customer data is hosted by Amazon Web Services (AWS) in the United States, which is a robust security infrastructure certified by SOC 2 Type II. AWS infrastructure provides a reliable, scalable, and secure environment for storing data in the cloud.
More can be learned about AWS security here.
Backup of data
Airgram backs up data daily on its system using AWS and maintains backups for a period of 7 days.
Data stored in AWS S3 is distributed across three availability zones, which helps to improve the reliability and availability of data through decentralized storage management.
Encryption
Airgram encrypts all data in transit between a web browser and a server using HTTPS/TLS, ensuring that sensitive information is kept private and secure.
Furthermore, all data is encrypted at rest using AES 128-bit encryption.
Vulnerability Management
Airgram runs automated security testing on an ongoing basis for potential threats and promptly addressing any vulnerabilities that are identified. Server status is updated every minute to ensure uptime at all times.
Additionally, penetration tests are executed at least once a year to make sure our software remains secure.
Personnel Security
All Airgram employees and service providers must sign confidentiality and non-disclosure agreements to ensure that all information collected on our systems is kept confidential.
Moreover, our customer support personnel will only access customer information (and ask for permission beforehand) for the purpose of troubleshooting. Such access is monitored by internal security team.
The security team also maintains a company-wide training program annually to increase staff’s security awareness and further reduce the risk of information leakage.
We aim for data security and satisfying user experience. To report a vulnerability or other security concern, please email us at support@airgram.io or directly message us via Intercom.
