logo main
  • Language
    Es
    English
    Portuguese
    Spanish
    • Iniciar sesiónPrueba gratuita

    SECURITY AT ALBATO


    At Albato, we prioritize the security and protection of your data. Our comprehensive security measures are designed to ensure the integrity, confidentiality, and availability of data, while also complying with industry standards and best practices.


    Encryption Standards

    We employ robust encryption standards to protect your data. Data at rest is secured using 256-bit AES encryption, while data in transit is protected using TLS 1.2 and 1.3 with AES 256 encryption. This ensures that your data remains secure as it is stored and as it travels over the network.


    Hosting and Data Centers

    Our infrastructure is hosted on Amazon Web Services (AWS) and Google Cloud Platform (GCP), known for its industry-leading security policies. We leverage AWS and GCP’s security and compliance controls and deploy our cluster over two zones to guarantee availability. All Albato websites, APIs, databases, and servers are hosted in data centers run and secured by AWS and GCP.


    Network Security and Access Control

    We have implemented robust access control measures. Our hosting environment is only accessible from the private network via VPN and does not support direct access from the public internet.


    Secure Handling of Credentials

    Albato securely handles third-party keys and credentials. Credentials are stored encrypted at rest using AES-128. We also support single sign-on authentication with various providers like Google, Facebook.


    Vulnerability Management and Penetration Testing

    We employ strict vulnerability management processes to identify and resolve threats. Regular penetration testing is conducted by independent third parties to ensure the safety and security of our platform.


    Customer Data Security

    We are committed to protecting our customers' data and employ advanced security practices to keep data safe and secure. Log data is stored for 60 days


    Developer Standards

    Our developers adhere to coding standards in accordance with the Open Web Application Security Project (OWASP). Static Application Security Testing (SAST) is in place to improve Albato’s Software Development Life Cycle (SDLC).


    Secure Payment Processing

    Albato uses PCI compliant Stripe for payment processing, ensuring the highest level of security for transactions. We do not store any credit card data, as this is handled securely by Stripe.


    Your Responsibility

    While we ensure the security of Albato systems, we encourage our users to follow good security practices. This includes reading and understanding our Acceptable Use Policy and Terms of Use, regularly auditing your organization's users, handling credentials securely, and notifying Albato of any suspected information security breaches.


    Contact Us

    If you have any questions or concerns about security practices at Albato, or if you believe you have found a vulnerability in Albato's platform, please reach out to us at info@albato.com

    Albato is committed to providing a secure and reliable platform for all users. We continuously work to enhance our security posture and protect your data.


    Please note that this content is a compilation of security practices from various sources and is intended for illustrative purposes. If you have any questions or concerns about security practices at Albato, or if you believe you have found a vulnerability in Albato's platform, please reach out to us at info@albato.com