ContinuityApp

ContinuityApp Security

CONTINUITYAPP'S COMMITMENT TO SECURITY

ContinuityApp applies security best practices at every level. We know and we understand how the most important part of our job is to ensure our customer’s data are safe. We maintain a very complex environment, and everything we do is done keeping in mind all security implications.
We choose the best ciphers when encrypting your data or traffic, we prefer in-memory filesystems whenever possible, and we keep auditing our infrastructure.

DATA CENTERS

ContinuityApp's infrastructure is hosted and managed within different Data Centers across the US.

PAYMENT CARDS MANAGEMENT

We use PCI compliant payment processor Stripe for encrypting and processing credit card payments.
We don't store anything but a Card fingerprint (provided by our payment processor): this fingerprint can't be reversed, and we use this to manage fraud.

ACCESS TO REPOSITORIES AND SOURCE CODE MANAGEMENT

To access customer repositories we generate a unique per project SSH Keypair. We don't support password-based repositories. We keep a local clone of your repository in order to speedup operations over large projects. We use encrypted filesystems for repository clones.
Commit diffs, commit images and build artifacts are stored encrypted at Amazon S3. Access to Amazon S3 is granted by not easly guessable account credentials, and a Hardware MFA Device.
Repository clones are automatically removed if not accessed at least once every 48 hours.

DEPENDENCIES AND BUILD PACKS

Only authorized and trusted accounts can publish public Dependencies into the marketplace.
We maintain a list of Dependencies, but we can't guarantee about third-party published software.

CUSTOMER APPLICATIONS ISOLATION

Applications run within their own isolated environment and cannot interact with other applications. Also, they don't have any kind of access to other infrastructure areas. Application Environments isolate processes, memory, networking and file system.

OFFSITE BACKUPS

We constantly backup our databases at Amazon S3. We don't backup repository clones.

DISASTER RECOVERY

We maintain a perfect copy of our infrastructure in another set of Data Centers.
Data syncronized between Data Centers are not sensitive: only databases are syncronized, while repository clones aren't.

ACCESS TO CUSTOMER DATA

ContinuityApp Staff doesn't intreract with customer data during normal operations. Data could however be accessed if required by law, or in case customers request support and explicitly express allowance to access data.

SECURITY CONTACTS

Security issues are always managed with the highest priority, every day at every hour. Security Staff can be reached at security@continuityapp.com. Team is constantly monitoring contact requests at every hour, so please use this channel with care. For non-emergency issues please open an ordinary ticket contacting support@continuityapp.com.

We encourage you to contact Security Staff signing your emails via PGP.
This is our key:
Key ID: 6BA526EEA3AB75AC
Algorithm: RSA
Size: 4096
Created: 04 July 2012 12:46
Expires: 04 July 2016 12:46
Key fingerprint: 5DD5 613D C3EC D28C FDFD 3DD9 6BA5 26EE A3AB 75AC

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG/MacGPG2 v2.0.18 (Darwin)
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=Fap5
-----END PGP PUBLIC KEY BLOCK-----