Guest Manager

Security

Effective date: Apr 15, 2020

We protect your data.

All data are written to multiple disks instantly, backed up daily, and stored in multiple locations. Files that our customers upload are stored on servers that use modern techniques to remove bottlenecks and points of failure.

Your data is sent using HTTPS.

Whenever your data are in transit between you and us, everything is encrypted, and sent using HTTPS. Within our firewalled private networks, data may be transferred unencrypted.

Your data is encrypted.

All data is encrypted at rest with AES-256, block level storage encryption. Any files which you upload to us are stored and are encrypted at rest.

We leave physical security to the professionals.

Guest Manager is a small company and we want to devote as much time as possible to serving our customers. That is why we have invested heavily in delegating nearly all infrastructure management to our hosting provider, Heroku (a Salesforce company), who is a Platform-as-a-Service provider built on top of Amazon AWS.

Scope of certifications

Guest Manager is hosted on the Common Runtime of Heroku, compliant with ISO 27001, 27017, 27018, and SOC 1, 2, 3

We protect your billing information.

All credit card transactions are processed using secure encryption—the same level of encryption used by leading banks. Card information is transmitted, stored, and processed securely on a PCI-Compliant network. Guest Manager does not store or transmit credit card numbers through our own servers.

9 years in business.

We’ve been around the block and we’ve seen a lot of companies come and go. Security isn’t just about technology, it’s about trust. Over the past 9 years we’ve worked hard to earn the trust of thousands of companies world wide. We’ll continue to work hard every day to maintain that trust. Longevity and stability is core to our mission at Guest Manager.

Adapted from the Basecamp open-source policies / CC BY 4.0
Questions or concerns about our policies? Don't hesitiate to get in touch.