Bitband Security Policy

Overview
This document describes Bitband’s security policy. The purpose of this document is to provide Bitband customers with information on how we approach security and security policies.
Change Control and Release Management Processes of our Software
Our code is stored using a Git repo and we follow the release management process similar to: https://nvie.com/posts/a-successful-git-branching-model/https://nvie.com/posts/a-successful-git-branching-model/​
Audits and Reviews
We rely on the audits provided by AWS which include audits for the following designations: ISO 27001, 27017, and 27018 Certification SOC1, 2 and 3
Security Standards Accreditation
The AWS framework we use is accredited for ISO 27001, 27017, and 27018
Security Penetration Testing
We routinely code review our apps before we release to production, We also particpate in a BugCrowd program for our software.
Business Continuity and Disaster Recovery Plans
We rely on the AWS framework which is hosted at Amazon. The backup and redundancy mechanisms of AWS are described here: https://aws.amazon.com/compliance/data-center/controls/​
Security Self-Assessment Program
Bitband participates in the Atlassian self assessment program. Details of this can be found at: https://developer.atlassian.com/platform/marketplace/security-self-assessment-program/​
Security Policy
Our privacy policy is located at: https://www.bitband.com/privacy-policy​

Release Notes

Last modified 1yr ago