Security Policy

Last updated: December 1, 2022

DATA SAFETY

All ROMBI data is hosted on Digital Ocean. We take advantage of all the security and privacy features Digital Ocean provides, plus our team takes additional pro-active measures to maintain a secure infrastructure and make sure there are always multiple backups for infrastructure disaster recovery purposes (though we can't offer backup in case of user made errors on a per account basis). For more specific details regarding how Digital Ocean keeps data secure, please refer to https://www.digitalocean.com/security.

We don't publicize exactly what features, services, and data center we use for security reasons, but we can give you a brief overview of how we make sure your data is safe. We recommend you also review our Terms of Use and Privacy Policy.

Security Measures We Implement

🔒 Data Encryption

All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption.

🛡️ Access Control

Multi-factor authentication and role-based access controls ensure only authorized personnel can access your data.

🔐 Secure Infrastructure

Our infrastructure is built on Digital Ocean's secure cloud platform with regular security updates and monitoring.

📊 Regular Audits

We conduct regular security audits and penetration testing to identify and address potential vulnerabilities.

💾 Backup & Recovery

Multiple backup systems ensure your data is protected against infrastructure failures and disasters.

👥 Team Training

Our team receives regular security training to maintain the highest standards of data protection.

Your Security Responsibilities

While we implement robust security measures, you also play a crucial role in protecting your data:

  • Use strong, unique passwords for your account
  • Enable two-factor authentication when available
  • Keep your login credentials secure and never share them
  • Log out from shared devices
  • Report any suspicious activity immediately

Security Concerns?

If you have any security concerns or discover a potential vulnerability, please contact us immediately at [email protected].

We take all security reports seriously and will respond promptly to address any issues.

Last updated on 12/01/2022