Data Protection

Authentication and Access Management

End users can log into Cloudsaver using credentials established on the platform or via "Sign-in with Google" OpenID service. This authentication method verifies user identity and may share personal information like names and email addresses to streamline signup forms.

Protection of Customer Data

Cloudsaver implements encryption strategies at multiple levels to safeguard customer data and secrets. The system uses encryption at rest (AES-256) and KMS-based protections for the protection of secrets including passwords, access tokens, and API keys.

Access Controls

Access to customer data is restricted to personnel with legitimate business needs. The company has deployed layered access controls for administrative roles and requires Multi-Factor Authentication (MFA) for environments containing customer data.

The organization enforces the principles of least privilege and need-to-know for access to customer data, with continuous monitoring and logging of such access.

Administrative Security

• Controls for integrity and confidentiality of administrative credentials and access mechanisms
• Full-disk encryption mandated for workstations
• Unique credentials required per workstation
• Multi-Factor Authentication (MFA) required for environments containing customer data
• Continuous monitoring and logging of access to customer data environments

For security inquiries or to request a copy of our SOC 2 Type II report, contact us at security@cloudsaver.com.