Your data is your data. We protect it with the upmost care.
You can sleep well knowing that your data is safe.
We take this responsibility very seriously and have built Lightpost with this in mind from day one.
In the interest of transparency, outlined below are just some of the ways that we protect your data.
We have extensive logs and metrics on activity that happens on Lightpost servers.
Servers are only accessible via an SSH connection. SFTP access is disabled.
We utilize two-factor authentication for all third party services related to Lightpost.
Our SaaS application is built on an industry leading web framework: Laravel
Our framework and application dependencies are continually kept up to date.
All database calls are sanitized before execution.
We utilize CSRF tokens to prevent cross site request forgeries.
We log all application errors into a bug tracker for analysis.
All our websites and mobile apps transmit data over SSL-enabled encrypted connections (HTTPS).
Passwords are stored using the one-way
bcrypt hashing method. We can never see your password, even if we wanted to.
Our database backups are encrypted.
Specific information identified as sensitive in our database is encrypted at rest.
We employ several methods for data backup to make sure your data is never lost and our backups are never old.
Our database employs streaming replication to a secondary off-site location.
Our primary database takes daily, weekly and monthly encrypted backups.
Our secondary database takes daily, weekly and monthly encrypted backups and stores these remotely at an additional off-site location.