Security & Reliability

At Cloudmango we know that our customers rely on us as an important part of their business processes and record keeping. We take our responsibilities to our customers seriously, and the security and reliability of the software, systems and data that make up the Cloudmango application are our top priority.

SSL Security

All information traveling between your browser and Cloudmango is protected from eavesdroppers with 256-bit SSL encryption. The lock icon in your browser lets you verify that you aren’t talking to a phishing site impersonating Cloudmango and that your data is secure in transit.

Firewalls

The Cloudmango application - including your data - rests securely behind Cisco-powered firewalls. Vulnerability scanning

Cloudmango’ servers are scanned for vulnerabilities regularly by a third party company. These scans test our servers both from the Internet and from inside our network, and any newly-identified problems are addressed as quickly as possible.

Intrusion detection

All of the traffic entering and leaving Cloudmango’ network is monitored by an Intrusion Detection System (IDS). Any unusual behavior is analyzed by security experts, and responses are coordinated between them, Amazon Web Services, and our system administration team.

Strong encryption

Cloudmango uses industry standard encryption protocols and practices to responsibly transmit sensitive information (including cardholder data).

Physical security

The Cloudmango servers are located in Amazon Web Services state-of-the-art datacentres, which provide biometric access controls, constant surveillance, redundant power feeds and generators, robust fire suppression, and carefully monitored climate control to protect the servers that store your data and manage your billing.

Cardholder Data

Cardholder data should only be input by the user in areas that explicitly require it. Cloudmango handles cardholder data in a secure manner while it’s in transit and does not store cardholder data within its platform on behalf of our customers. Where cardholder data storage is required (i.e. automatic payments on recurring templates) Cloudmango leverages PCI compliant partners to store the cardholder data.

Secure Development Practices

Cloudmango developers follow the secure development practices described in OWASP. Furthermore, we subscribe and adhere to the principals of least access.

Reliability: Redundant servers and datacentres

The Cloudmango infrastructure uses redundant storage and servers to keep the application and your data available in the case of hardware failure - and another set of servers and storage in a geographically separate datacentre in case our primary datacentre is made unavailable by a disaster or other disruption.

Managed hosting

Cloudmango has chosen Amazon Web Services and Heroku for our hosting needs. With clients like Alcatel-Lucent, NASA, Netflix, Unilever, AirBnB, General Electric, Pfizer, Spotify, Philips and BMW, we know Amazon Web Services provides the hardware, service and expertise you expect.

Backups

The data in your Cloudmango account is replicated across multiple database servers in two geographic locations to prevent a single failure from causing data loss. Additionally, that data is backed up nightly to tape and stored in a secure offsite location to ensure that, even in the event of a catastrophe like a tornado or flood, your information will be safe and your records can be quickly restored. If you have any security concerns or questions please feel free to contact us directly.

Au boulot avec Cloudmango