ISO/IEC 27001:2013 certified

ISO/IEC 27001:2013

The most rigorous global security standard for Information Security Management Systems (ISMS).

See certificate
SOC 2 compliance

S0C 2 Compliance

Annual audit certification for Service Organization Controls Trust Services Principles.

Contact us

This Security Policy applies only to your data on Cloud Pumble (as defined in Section 1 of the Terms of Use)

DATA SAFETY

Our top priority is customer satisfaction and we would never do anything with your data that we wouldn’t be proud to tell the world about.

All Cloud Pumble data is hosted on Amazon Web Services (AWS). We take advantage of all the security and privacy features AWS provides, plus our team takes additional proactive measures to maintain a secure infrastructure and make sure there are always multiple backups for infrastructure disaster recovery purposes (though we can't offer backup in case of user made errors on a per account basis). For more specific details regarding how AWS keeps data secure, please refer to https://aws.amazon.com/security/.

We don't publicize exactly what features, services, and data center we use for security reasons, but we can give you a brief overview of how we make sure your data is safe. We recommend you also review our Terms of Use and Privacy Policy.

DATA CENTER SECURITY

AWS maintains an impressive list of reports, certifications, and independent assessments to ensure complete and ongoing state-of-the-art data center security. They have many years of experience in designing, constructing, and operating large-scale data centers, which makes them the industry standard when it comes to security.

Cloud Pumble’s data is hosted in the AWS US-East region. Additionally, data centers are secured with a variety of physical controls to prevent unauthorized access.

INFRASTRUCTURE SECURITY

All Cloud Pumble servers are run from own virtual private clouds (VPCs), with rules that prevent unauthorized requests from entering our network.

Cloud Pumble infrastructure is hosted in a fully redundant, secure VPN environment, with access restricted to operations support staff only. This way we can leverage complete firewall protection, private IP addresses, and other security features.

The whole system on which Cloud Pumble runs is behind a firewall and only the necessary ports are open to the outside network. Also, only authorized personnel, using SSH keys, have access to the system. Access is enabled only over a VPN connection.

APPLICATION SECURITY

All data to and from Cloud Pumble is sent securely over HTTPS. The initial connection is established over 2048 bit TLS, and the rest of the communication happens over 256 bit SSL. This is the standard technology for keeping an internet connection secure and prevents anyone from reading and modifying any information. Any data transferred between a user and Cloud Pumble is impossible to read or modify.

We use the same level of encryption as do banks and financial institutions. All data is encrypted using SHA256withRSA algorithms, which scramble data in transit, preventing hackers from reading it.

Your company-specific data inside Cloud Pumble is kept separate through a logical separation at the data tier, based on application-level access permissions and roles you set up in your workspaces.

All Pumble data is encrypted at rest. At-rest encryption means that all our databases, files, and other storages of content have their files encrypted when they’re backed up or otherwise sitting idle. If someone was somehow able to get a hold of a backup of the database, it’d be useless, because they wouldn’t have the key to decrypt it.

OPERATIONAL SECURITY

Our system is constantly monitored. We get reports in real time so we can instantly react in case a potential issue arises. All actions taken on production consoles are logged.

We constantly monitor security, performance, and availability 24/7/365. We run automated security testing on an ongoing basis. We prioritize, resolve, and deploy discovered security issues quickly after discovery. Because we follow Continuous Delivery and Deployment best practices, we can update Cloud Pumble on a daily basis and fix things as soon as we see them.

We never access your data in Cloud Pumble, unless required for support reasons and with your explicit permission.

COMPLIANCE

CAKE.com Inc. is committed to providing secure products and services to safely and easily manage billions of digital identities across the globe. Our external certifications provide independent assurance of CAKE.com Inc.'s dedication to protecting our customers by regularly assessing and validating the protections and effective security practices CAKE.com Inc. has in place.

SOC 2 TYPE II

CAKE.com Inc. successfully completed the AICPA Service Organization Control (SOC) 2 Type II audit. The audit confirms that CAKE.com Inc.'s information security practices, policies, procedures, and operations meet the SOC 2 standards for security.

An unqualified opinion on a SOC 2 Type II audit report demonstrates to the CAKE.com Inc.'s current and future customers that they manage their data with the highest standard of security and compliance.

Our SOC 2 Type II report is available upon request.