Our Security Measures

TECHNICAL AND ORGANIZATIONAL MEASURES

Systems and Services Security
FetchApp’s physical infrastructure is hosted and managed within Amazon’s secure data centers via AWS (both directly and via Heroku), as well as with BackBlaze. 

Backblaze have implemented and maintain security controls including the secure disposal of data storage devices, maintaining an asset inventory, limiting access to source code libraries, segregating production and corporate environments, and protecting hosts by using firewalls and endpoint detection and response software.

For additional information see: https://www.backblaze.com/company/dpa Annex II

Amazon continually manages risk and undergoes recurring assessments to ensure compliance with industry standards. Amazon’s data center operations have been accredited under:

• ISO 27001
• SOC 1 and SOC 2/SSAE 16/ISAE 3402 (Previously SAS 70 Type II)
• PCI Level 1
• FISMA Moderate
• Sarbanes-Oxley (SOX)

For additional information see: https://aws.amazon.com/security

Access Control
Fetchapp manages risks associated with user identification, authentication, and authorization by maintaining a formal access control policy, centrally managing user accounts, reviewing user access, and promptly revoking access when necessary.

Encryption
Fetchapp protects ​​personal data in transit through encryption. All connections to Fetchapp web services occurs via SSL.

System Configuration
To ensure system configurations are protected, Fetchapp restricts software deployment and system access to individuals who have an operational need.