Security Policy

We know your data is very important to your business, so we are providing this information below about our security practices We will update this page as necessary. For additional security reasons, this document is not comprehensive

Operational Security

• Systems access logged and tracked
• Secure document-destruction policies for all sensitive information
• Sensitive business information is stored in encrypted containers
• We use strong, randomly generated passwords that change frequently

Network Communications

• All private data exchanged with Digitist is transmitted over SSL
• All internal and remote server communications occur via SSH authenticated with keys or by Virtual Private Network (VPN) access

Software & System Security

• We follow current industry best practices for developing secure software
• We use only proven (trusted) encryption algorithms, avoiding any "custom" cryptographic implementations.
• Our software and systems are regularly audited for security and dependency updates
• All of our code is staged and validated against an automated test suite prior to each deployment

Backups

• Our backups run automatically at regularly scheduled intervals
• Archived data is encrypted and stored at a secure, non-public location

Credit card safety

Digitist processes credit card transactions, but does not store any of your credit card information on our servers. We store credit card information with Stripe, Inc., a company dedicated to storing your sensitive data on PCI-Compliant servers.