July 27, 2022
All data are written to multiple disks instantly, backed up daily, and stored in multiple locations. Files that our customers upload are stored on servers that use modern techniques to remove bottlenecks and points of failure.
All data is encrypted via SSL/TLS when transmitted from our servers to your browser. The database backups are also encrypted. The database is also encrypted. Any files which you upload to us are stored and are also encrypted at rest.
For our products, some data are not encrypted to an authorized personnel, such as a developer, while they live in our database. These data are typically only metadata or data not specific to you. For personel identifiable information (PII), your data are encrypted and unreadable even to authorized personnel while in our database. The key for the encrypted data is also inaccessible to all personnel at PocketRN. We go to great lengths to secure your data at rest and in transit.
Our primary operations are on Google Cloud Platform. Their servers — from power supplies to the internet connection to the air purifying systems — operate at full redundancy. Our systems are engineered to stay up even if multiple servers fail. Their state-of-the-art servers are protected by biometric locks and round-the-clock interior and exterior surveillance monitoring. Only authorized personnel have access to the data center, and they do not have direct access to your data. 24/7/365 onsite staff provides additional protection against unauthorized entry and security breaches. Google Cloud Platform takes security extremely seriously, which is why we chose them to host our infrastructure. You can read all about it on their security whitepaper.
Our software infrastructure is updated regularly with the latest security patches. Our products run on a dedicated network which is locked down with firewalls and carefully monitored. While perfect security is a moving target, we work with security researchers to keep up with the state-of-the-art in web security.
All credit card transactions are processed using secure encryption—the same level of encryption used by leading banks. Card information is transmitted, stored, and processed securely on a PCI-Compliant network.
We have a team dedicated to maintaining your account’s security on our systems and monitoring tools we’ve set up to alert us to any nefarious activity against our domains. To date, we’ve never had a data breach.
We also audit internal data access. If a PocketRN employee wrongly accesses customer data, they will face penalties ranging from termination to prosecution. Again, to our knowledge, this hasn’t happened.
We have processes and defenses in place to keep our streak of 0 data breaches going. But in the unfortunate circumstances someone malicious does successfully mount an attack, we will immediately notify all affected customers.
Have you noticed abuse, misuse, an exploit, or experienced an incident with your account? Please email us at firstname.lastname@example.org. If you’re worried about the sensitivity of such an email, contact us and we’ll work with you on securely sending us information.