We treat the protection of our customer data as our most important priority at GoDashboard. We're constantly striving to improve our security standards and processes to protect your data and have implemented industry standard privacy and security protocols to ensure it's safety. The following sections give an overview of the privacy and security protocols that we have put in place.
All data sent to and from our website is encrypted during transit using TLS protocols using 2,048 bit keys and HTTP Secure (HTTPS / SSL) SHA-256 certificates. In addition, all data stored on our server infrastructure is encrypted in storage.
All passwords used to authenticate to the GoDashboard website are hashed and salted using bcrypt. No cleartext passwords are stored at any time.
Customer password recovery is via email to the customer's registered email address only. At no time to our administrators have access to unencrypted customer passwords.
We use Two Factor Authentication (TFA) to authenticate to our Amazon cloud services to ensure that no third party could gain access to our Amazon account via password leaks or other impersonation attempts.
We use the third party payment provider Stripe to manage payments made for our Subscriptions. Stripe has been audited by a PCI-certified auditor and is certified to PCI Service Provider Level 1. This is the most stringent level of certification available in the payments industry. For Stripe's full security statement, please see this link: https://stripe.com/docs/security/stripe
We do not store our customer's credit card information and all credit card information sent to Stripe is encrypted by SSL during transmission.
Our data is hosted on Amazon Simple Storage Service (S3) and DynamoDB services. We have multiple copies of the data hosted in separate Amazon S3 zones in different regions so in the event of a complete Amazon zone failure we will still be able to service client requests and ensure that our website remains functional under all network and datacenter conditions sufficient to maintain 99.9% uptime.
We use Amazon Cloudfront Content Delivery Network (CDN) to ensure that our and data requests are serviced as quickly as possible and to mitigate the risk of denial of service (DOS) attacks.
All client data is backed up daily to a separate physical location to our primary server infrastructure.
Our engineering team monitor our website and infrastructure performance and behaviour through industry standard services that are highly reliable and compliant.