We align with GDPR and SOC II

To guarantee the highest level of data protection we align with the global security standards.

Data Security

  • Data encryption in transit using TLS 1.2+
  • Data encrypted at rest using AES 256-bit encryption algorithm
  • Automated backups ensure data availability

Vanta Monitoring

Vanta monitores the state of our security in real-time.
See our Trust Report below.

Infrastructure Security

Cloud infrastructure

Our infrastructure is hosted on AWS Europe (France), ensuring reliability and security

Dedicated environments

Isolated and reproducible environments for both testing and production

Regular pentests

We undergo yearly penetration testing by an external accredited security firm

Vulnerability scans

We continuously run comprehensive vulnerability scans
‍

Security Policies

  • Access to infrastructure assets managed and restricted to necessary stakeholders
  • No trust by default policy, access granted only after request
  • By default, no employees or contractors have access to user data
  • All employees are enforced to security best practices (2FA/MFA, password manager, no credentials sharing)
Disclosure Policy
If you would like to learn more about or share your feedback regarding our security policy, you can do so by emailing us at security@dotfile.com. We aim to acknowledge your email within 24 hours.