Hosting Environment Security

ISO 27001, 27017, and 27018 Certification

Our hosting partner has been certified against this set of widely recognized and internationally accepted information security standards that specifies security management best practices and comprehensive security controls following ISO 27002. These certifications also cover information security specific to the cloud the protection of Personally Identifiable Information (PII).

SOC 1, 2, and 3 Attestation Reports

Our hosting partner has been issued SOC1, 2 and 3 reports by an independent auditor. The SOC1 Type II is an independent examination of the IT General controls and controls around availability, confidentiality and security of customer data processed by the hosting partner relevant for the financial reporting of customers. The SOC2 Type 2 is a restricted to use report and independent examination of the fairness of presentation and the suitability of the design of controls relevant to security, availability and confidentiality of the customer data processed by the hosting. The general use SOC3 report is an independent examination of the fairness of presentation and the suitability of the design of controls relevant to security, availability and confidentiality of the customer data processed by the partner.

The Club Security Features

  • Transport security via TLS/SSL and Automated Certificate Management
  • Database logical and physical backups and rollback
  • Database encryption at rest
  • Tested against OWASP Web and Mobile Security Testing Guidelines