Security

Secure & Reliable Infrastructure

WhatsAuth uses Amazon Web Services (AWS) and Google Cloud Platform (GCP) for hosting both testing, staging, and production environments. AWS and GCP data centers are protected by secure perimeter defense systems, comprehensive camera coverage, biometric authentication, and 24/7 security staff. AWS and GCP are compliant with numerous standards, including SOC1, SOC 2, SOC 3, ISO 27001, and HIPAA. All revisions are performed by independent third-parties auditor.

Data encryption

Data is encrypted in-transit using bank-grade TLS 1.2, the safest method available today.

Data Permissions & Authentication

Access to customer data is limited to authorized employees who require it for their job. Our employees sign a Non-Disclosure and Confidentiality Agreement to protect our customers' sensitive information.

Secure Software Development

WhatsAuth utilizes a variety of manual and automatic data security and vulnerability checks throughout the software development lifecycle.
‍
Role-based access control
‍
Advanced role-based access control (RBAC) is offered on all our accounts and allows our users to define roles and permissions.

Business continuity & disaster recovery

We back up all our critical assets to guarantee the possibility of a recovery in case of disaster. All our backups are encrypted.
‍
Credit Card Data Safety

When you enter your credit card on WhatsAuth, all credit card data is handled by Fastspring, a company dedicated to storing your sensitive data on PCI-Compliant servers. Our servers do not store or even see your credit card information.