Safety Security & Privacy
All connections to Yellowdig are secured through SSL/TLS. All HTTP requests are redirected to use HTTPS automatically. Hence, all communication with Yellowdig is encrypted, using the best encryption mechanisms for similar applications on the web in practice today.
The Yellowdig application is developed using the currently accepted best practices for any application dealing with sensitive information and deployed on the Internet for access by end-users and partners, including encryption and highly restricted access to the development, deployment, and data storage environments.
Password and User Data Security
Yellowdig is hosted on AWS. Critical AWS facilities have extensive setback and military grade perimeter control berms as well as other natural boundary protection. Physical access is strictly controlled both at the perimeter and at building ingress points by professional security staff. They utilize video surveillance, state of the art intrusion detection systems, and other electronic means.
Customer Data Backup and Disaster Recovery
Yellowdig applications are hosted on comprehensively firewalled servers. These firewalls default to disabling any unsupported access mechanism, and carefully configured to only allow access for known services. We build on top of the well-defined and implemented security policies of the AWS services we depend on.
Secured Operating System
Yellowdig runs on hardened Linux servers. Externally exposed critical patches are addressed within 24 hours.