The security of the information you put into Returnly is very important to us.
Returnly uses physical, procedural, and technical safeguards to preserve the integrity and security of your information. For example, among other practices we:
- Regularly back up your data to help prevent data loss and aid in data recovery,
- Host data in secure SAS 70 audited data centers,
- Implement firewalls and access restrictions on our servers to secure our network and better protect your information.
Returnly continuously replicates your data between physical locations to prevent data loss. Additionally, Returnly stores regular backups and has the ability to perform point-in-time recovery for more granular data recovery. Returnly uses Amazon’s relational database service (RDS) to manage all user data. Amazon RDS provides us with the ability to do point-in-time recovery of our entire database at any second over the previous 8 days. For more information about Amazon’s relational database service, please see this page: http://aws.amazon.com/rds/
All data access in Returnly is subject to numerous checks to ensure no users from outside your company ever see or modify your data without you explicitly granting them access within Returnly.
Secure Application Development
Returnly follows best practices in all areas of application security and prevents common web attack vectors. When you enter information into Returnly, we use secure socket layer (SSL) technology to encrypt the transmission of your data to our servers, which helps protect your data.
All servers are firewalled to permit the minimum traffic necessary to run the service, and access to those servers is limited to Returnly employees with a legitimate business need.
SOC2 Type I (Compliance)
We are currently preparing our SOC2 Type I and have picked Schneider Downs to perform our audit. We are scheduled to have our Type I in hand by the end of Q1 2020. To request a copy of this document, please email us at firstname.lastname@example.org.
If you have any concerns about security or would like to report a security issue, please reach out to our team at email@example.com. Include the details of your concerns or finding and we will get back to you.