Content Hub OS is committed to maintaining the confidentiality, integrity, and availability of customer data. This Information Security Requirements document outlines the security controls and practices implemented to safeguard data processed through our platform and supporting services.
1. Data Encryption
All data is encrypted in transit using TLS 1.2 or higher. Where applicable, data at rest is encrypted using industry-standard encryption algorithms (e.g., AES-256).
2. Access Controls & Authentication
Access to systems and data is restricted based on the principle of least privilege. Strong authentication measures, including multi-factor authentication (MFA), are used where applicable.
3. Network Security
Our infrastructure is protected by modern firewalls, monitoring tools, and intrusion detection systems to prevent unauthorized access.
4. Employee Access & Training
Only authorized personnel have access to customer data. All team members undergo regular security and privacy training.
5. Hosting & Data Storage
Customer data is hosted in secure data centers operated by third-party providers such as Airtable, Google Cloud, and Make.com. Data center providers are certified under recognized security standards (e.g., ISO 27001, SOC 2).
6. Monitoring & Incident Response
We monitor our systems for unusual activity and maintain an incident response plan. Customers will be notified of any data breaches as required by applicable law.
7. Backup & Disaster Recovery
Regular backups are performed and tested. Disaster recovery plans are in place to restore availability in the event of major disruption.
8. Sub-Processor Oversight
All sub-processors undergo security and privacy review before engagement. We maintain a current list of sub-processors and ensure they meet our data protection standards.