Security Policy

Last modified: 06/17/2013

We know your data is very important to your business, so we are providing this information below about our security practices We will update this page as necessary. For additional security reasons, this document is not comprehensive

Operational Security

  • Systems access logged and tracked
  • Secure document-destruction policies for all sensitive information
  • Sensitive business information is stored in encrypted containers
  • We use strong, randomly generated passwords that change frequently

Network Communications

  • All private data exchanged with Digitist is transmitted over SSL
  • All internal and remote server communications occur via SSH authenticated with keys or by Virtual Private Network (VPN) access

Software & System Security

  • We follow current industry best practices for developing secure software
  • We use only proven (trusted) encryption algorithms, avoiding any "custom" cryptographic implementations.
  • Our software and systems are regularly audited for security and dependency updates
  • All of our code is staged and validated against an automated test suite prior to each deployment

Backups

  • Our backups run automatically at regularly scheduled intervals
  • Archived data is encrypted and stored at a secure, non-public location

Credit card safety

Digitist processes credit card transactions, but does not store any of your credit card information on our servers. We store credit card information with Stripe, Inc., a company dedicated to storing your sensitive data on PCI-Compliant servers.

Contact Us or File a Report

If you have any concerns related to our security practices, would like further information, or have discovered and would like to responsibly report a security vulnerability, please contact us as soon as possible. Thank you!