Security
Learn how SuprSend handles security
At SuprSend, we prioritize the security and privacy of your data. Our comprehensive security measures and adherence to industry standards ensure that your information is protected at every level.
Security Compliance
Our security measures meet industry standards for data protection and security.
Security Controls
The Security controls below highlight high-level details about our steps to implement best practices, identify and mitigate risks, and continuously develop ways to improve.
To learn about our full security controls, please look at security practices.
Data Security
- Production Databases Access Restriction: Access to production databases is highly restricted, limited to authorized personnel only.
- Multi-factor Authentication: All Staff members with access to critical systems use secure login mechanisms, including multi-factor authentication.
- Third-Party Assessments: We have thorough third-party penetration tests and infrastructure audits regularly.
- Data Encryption: Customer data in production databases and critical endpoints are encrypted to protect against unauthorized access.
- Data Backups: Regular backups are performed to meet recovery objectives, and the integrity of these backups is periodically tested.
- Server Logs Retention Policy: Server logs are retained for a maximum of 6 months, after which they are securely and permanently deleted.
- Automatic Session Timeout for Risk Mitigation: Sessions for accounts using email and password authentication, including those with two-factor authentication, automatically expire after three days of user inactivity to mitigate risks.
Network Security
- Transmission Confidentiality: We use HTTPS with TLS 1.2 & above encryption, to secure transmitted data.
- Data Protection in Testing: Customer data in non-production environments receives the same security standards as in production.
- Centralized Security Event Logging: Our infrastructure logs security-related actions across critical systems for auditing purposes.
We are committed to continually improving our privacy and data protection practices in accordance with relevant regulations. For more details, please visit:
If you identify a security issue or an area for improvement, please email us at [email protected]. We will work with you to understand and resolve the issue. Security concerns are our top priority, and we will address any reported issues promptly.
Updated 5 months ago