The platform has been architected by security professionals and experienced developers with security at the foundation.
We utilise the most secure and resilient stack from AWS which ensure servers are always patched and up to date.
Web servers store no sensitive information - this is retrieved from an AES-256 encrypted database accessible only within the virtual private cloud.
Automated security tests are performed internally across the code base on every commit. External automated web application security testing is performed daily.
In addition, we undertake regular third party security audits including web application penetration tests to ensure comprehensive coverage.