# Security πŸ”’

# We protect your data.

All data are written to multiple disks instantly, backed up daily, and stored in multiple locations. Files that our customers upload are stored on servers that use modern techniques to remove bottlenecks and points of failure.

# Your data are sent using HTTPS.

Whenever your data are in transit between you and us, everything is encrypted, and sent using HTTPS. Within our firewalled private networks, data may be transferred unencrypted.

Any files which you upload to us are stored and are encrypted at rest. Our application databases are generally not encrypted at rest β€” the information you add to the applications is active in our databases and subject to the same protection and monitoring as the rest of our systems.

# Full redundancy for all major systems.

Our servers β€” from power supplies to the internet connection to the air purifying systems β€” operate at full redundancy. Our systems are engineered to stay up even if multiple servers fail.

# Regularly-updated infrastructure.

Our software infrastructure is updated regularly with the latest security patches. Our products run on a dedicated network which is locked down with firewalls and carefully monitored. While perfect security is a moving target, we work with security researchers to keep up with the state-of-the-art in web security.

# We protect your billing information.

All credit card transactions are processed using secure encryptionβ€”the same level of encryption used by leading banks. Card information is transmitted, stored, and processed securely on a PCI-Compliant network.

# Reporting security problems

Send reports directly to [email protected]. We’ll get back to you as soon as we can, usually within 24 hours.

Adapted from the Basecamp open-source policies (opens new window) / CC BY 4.0 (opens new window)

Last Updated: 12/19/2020, 7:17:50 PM