Your Security Matters to Us
We take your security seriously. We have implemented a number of measures to protect your data and ensure that your information is secure.
Data Privacy
Data at rest
We encrypt all customer data at rest, including data stored in S3 buckets. For highly sensitive information, we also use field-level encryption, meaning the data is encrypted before it ever reaches the database. This ensures that having physical or logical access to the database alone isn’t enough to view that information.
Data in transit
SmartWiz secures all data sent over potentially unsafe networks using TLS 1.2 or higher. We also implement HSTS (HTTP Strict Transport Security) to further protect data in transit. Our server TLS keys and certificates are managed by AWS and delivered through Application Load Balancers.
Security Keys
We manage our encryption keys using AWS Key Management System (KMS), which stores key material in Hardware Security Modules (HSMs). This setup ensures no one, including Amazon or SmartWiz employees, can directly access the keys. These keys are used for encryption and decryption through Amazon’s KMS APIs. Application secrets are securely encrypted and stored in AWS Secrets Manager and Parameter Store, with access tightly restricted.
Product Security
Penetration Testing
We perform regular penetration testing to identify and address security vulnerabilities. This includes both internal and external testing, as well as testing for common web application vulnerabilities.
Vulnerability Scanning
We use Amazon Inspector to scan our servers for vulnerabilities. This helps us identify and address security vulnerabilities before they can be exploited.