RealAtom takes reasonable steps to secure its systems and to secure your personally identifiable information (both public and non-public) on our systems, including limiting access to the information contained on our servers when processing your account transactions.
When you use the RealAtom platform, the transmission of information between your device and our servers is protected using 256-bit TLS encryption.
RealAtom servers are located in the US, in data centers that are SOC 1, SOC 2 and ISO 27001 certified. RealAtom’s data centers have round-the-clock security, automatic fire detection and suppression, fully redundant power systems, and strict controls for physical access.
We regularly install security updates and patches to keep servers up to date. Servers are segmented based on role and protected using restrictive firewalls.
RealAtom uses industry-leading Amazon Web Services (AWS) hosting infrastructure. Backups are geo-redundantly replicated across multiple availability zones for data durability. RealAtom maintains business continuity and disaster recovery plans. Components of the disaster recovery plan include multiple site operations playbooks, which are regularly reviewed and rehearsed. RealAtom implements extensive service monitoring, and our operations team is on call 24x7x365.
RealAtom conducts application-level security scans on a frequent basis, package dependency security advisory scans on a weekly basis, and endpoint scans on a monthly basis. In addition to internal scans, RealAtom commissions external penetration tests on a regular basis.
As part of the software development process, code and configuration changes are thoroughly reviewed. Before being deployed, these changes are tested during the quality assurance process to help ensure a consistent experience across all devices, platforms, and browsers that are supported by RealAtom.
RealAtom does not store any of your credit card information on our servers. All payment processing is handled by Stripe.
RealAtom enables permission levels to be set for any employees with access to the RealAtom platform. No RealAtom employees ever access a customer’s files unless its required for support reasons, with permission from the customer. RealAtom works with an industry security team to keep our users and their work safe.
We deeply appreciate any effort to disclose vulnerabilities responsibly. If you would like to report a vulnerability or have any security concerns, please e-mail firstname.lastname@example.org