Security
At Archived.ink, security is our top priority. We implement industry-leading practices to ensure your documents remain safe, private, and accessible only to you.
Data Encryption
Your documents are encrypted at rest using SHA-based server-side encryption and protected in transit with TLS 1.3. This ensures that your data remains secure both while stored in our systems and when being transferred over the internet.
Access Controls
We implement strict access controls to ensure that only you can access your documents. Our systems use multi-factor authentication, role-based access controls, and regular access reviews to prevent unauthorized access to your data.
Infrastructure Security
Our infrastructure is built on AWS, which provides industry-leading security measures. We leverage AWS's security features, including network isolation, DDoS protection, and regular security assessments, to ensure the security of our platform.
Incident Response
We have a comprehensive incident response plan in place to quickly address any security incidents. Our team is trained to detect, respond to, and recover from security incidents, minimizing any potential impact on your data.
Compliance and Certifications
We adhere to industry standards and best practices to ensure the security of your data. Our security program is aligned with the following frameworks and certifications:
SOC 2 Type II
We follow SOC 2 best practices for security, availability, and confidentiality.
GDPR Compliant
Our systems and processes are designed to comply with the General Data Protection Regulation (GDPR) to protect the privacy rights of EU citizens.
ISO 27001
We follow the ISO 27001 framework for information security management.
HIPAA Compliant
Our security controls meet HIPAA requirements for storing sensitive health information.
Security Practices
Regular Security Assessments
We conduct regular security assessments, including vulnerability scanning, penetration testing, and code reviews, to identify and address potential security vulnerabilities.
Employee Security Training
All employees undergo comprehensive security training to ensure they understand and follow security best practices. We also conduct regular security awareness training to keep our team updated on the latest security threats and mitigation strategies.
Secure Development Lifecycle
We follow a secure development lifecycle that includes security requirements, threat modeling, secure coding practices, and security testing to ensure that security is built into our products from the ground up.
Reporting Security Concerns
If you discover a security vulnerability or have concerns about the security of our platform, please contact our security team immediately at security@archived.ink. We take all security reports seriously and will investigate and address them promptly.