Security & Privacy
Security is at our core, as founders with security passion and background. We conduct comprehensive audits of our applications, systems, and networks to ensure your data is always protected.
Security
Infrastructure
Our application is built on AWS and Fly.io. We benefit from their data center and system development practices. We leverage AWS best practices to ensure our systems are secure from the outside world. Fly.io provides a secure and scalable infrastructure that lets us focus on serving you.
Transfer between infrastructure providers is done exclusively via private networking. We do not expose databases or other infrastructure to the public web.
AWS maintains an audited security program, as well as physical, environmental, and infrastructure security protections. Business continuity and disaster recovery plans have been independently validated as part of their SOC 2 Type 2 and ISO 27001 certifications.
Fly.io maintains a SOC 2 Type 1 audit and a documented security program.
Regularly updated
Our software infrastructure is updated regularly with the latest security patches. Our products run on AWS networking infrastructure, which enables firewall and application security. Our products also run on Fly's infrastructure, where updates are automatically applied.
Data protection
All data sent to or from Cardinal is encrypted in transit using 256-bit encryption. Our API and application endpoints are TLS/SSL only and score an “A” rating on Qualys SSL Labs‘ tests. We also encrypt data at rest using an industry-standard AES-256 encryption algorithm.
Cardinal is hosted by AWS and stores customer data using a combination of databases. By default, AWS provides durable infrastructure to store important data and is designed for the durability of 99.9% of objects. Automated backups of all customer and system data are enabled, and data is backed up daily at a minimum. The backups are encrypted in the same way as live production data and are monitored and alerted.
Privacy
We protect your billing information
We use Stripe to process your billing information. Card information is transmitted, stored, and processed securely on Stripe's PCI-Compliant network.
Identity management
Cardinal relies on your existing identity provider to authenticate users. Any authentication settings from your identity provider are automatically used by Cardinal, including MFA and context-aware access.
Compliance
SOC2 Type II
Cardinal is SOC 2 Type II compliant. Contact us to get the report.
Have a security concern or
need to report an incident?
Contact our security team at security@cardinalapp.io to disclose any security vulnerabilities or any other concerns.
Security & Privacy
Security is at our core, as founders with security passion and background. We conduct comprehensive audits of our applications, systems, and networks to ensure your data is always protected.
Security
Infrastructure
Our application is built on AWS and Fly.io. We benefit from their data center and system development practices. We leverage AWS best practices to ensure our systems are secure from the outside world. Fly.io provides a secure and scalable infrastructure that lets us focus on serving you.
Transfer between infrastructure providers is done exclusively via private networking. We do not expose databases or other infrastructure to the public web.
AWS maintains an audited security program, as well as physical, environmental, and infrastructure security protections. Business continuity and disaster recovery plans have been independently validated as part of their SOC 2 Type 2 and ISO 27001 certifications.
Fly.io maintains a SOC 2 Type 1 audit and a documented security program.
Regularly updated
Our software infrastructure is updated regularly with the latest security patches. Our products run on AWS networking infrastructure, which enables firewall and application security. Our products also run on Fly's infrastructure, where updates are automatically applied.
Data protection
All data sent to or from Cardinal is encrypted in transit using 256-bit encryption. Our API and application endpoints are TLS/SSL only and score an “A” rating on Qualys SSL Labs‘ tests. We also encrypt data at rest using an industry-standard AES-256 encryption algorithm.
Cardinal is hosted by AWS and stores customer data using a combination of databases. By default, AWS provides durable infrastructure to store important data and is designed for the durability of 99.9% of objects. Automated backups of all customer and system data are enabled, and data is backed up daily at a minimum. The backups are encrypted in the same way as live production data and are monitored and alerted.
Privacy
We protect your billing information
We use Stripe to process your billing information. Card information is transmitted, stored, and processed securely on Stripe's PCI-Compliant network.
Identity management
Cardinal relies on your existing identity provider to authenticate users. Any authentication settings from your identity provider are automatically used by Cardinal, including MFA and context-aware access.
Compliance
SOC2 Type II
Cardinal is SOC 2 Type II compliant. Contact us to get the report.
Have a security concern or
need to report an incident?
Contact our security team at security@cardinalapp.io to disclose any security vulnerabilities or any other concerns.
Security & Privacy
Security is at our core, as founders with security passion and background. We conduct comprehensive audits of our applications, systems, and networks to ensure your data is always protected.
Security
Infrastructure
Our application is built on AWS and Fly.io. We benefit from their data center and system development practices. We leverage AWS best practices to ensure our systems are secure from the outside world. Fly.io provides a secure and scalable infrastructure that lets us focus on serving you.
Transfer between infrastructure providers is done exclusively via private networking. We do not expose databases or other infrastructure to the public web.
AWS maintains an audited security program, as well as physical, environmental, and infrastructure security protections. Business continuity and disaster recovery plans have been independently validated as part of their SOC 2 Type 2 and ISO 27001 certifications.
Fly.io maintains a SOC 2 Type 1 audit and a documented security program.
Regularly updated
Our software infrastructure is updated regularly with the latest security patches. Our products run on AWS networking infrastructure, which enables firewall and application security. Our products also run on Fly's infrastructure, where updates are automatically applied.
Data protection
All data sent to or from Cardinal is encrypted in transit using 256-bit encryption. Our API and application endpoints are TLS/SSL only and score an “A” rating on Qualys SSL Labs‘ tests. We also encrypt data at rest using an industry-standard AES-256 encryption algorithm.
Cardinal is hosted by AWS and stores customer data using a combination of databases. By default, AWS provides durable infrastructure to store important data and is designed for the durability of 99.9% of objects. Automated backups of all customer and system data are enabled, and data is backed up daily at a minimum. The backups are encrypted in the same way as live production data and are monitored and alerted.
Privacy
We protect your billing information
We use Stripe to process your billing information. Card information is transmitted, stored, and processed securely on Stripe's PCI-Compliant network.
Identity management
Cardinal relies on your existing identity provider to authenticate users. Any authentication settings from your identity provider are automatically used by Cardinal, including MFA and context-aware access.
Compliance
SOC2 Type II
Cardinal is SOC 2 Type II compliant. Contact us to get the report.
Have a security concern or
need to report an incident?
Contact our security team at security@cardinalapp.io to disclose any security vulnerabilities or any other concerns.
✌🏻 Up and running in 5 minutes
Connect CRM, import feedback, feature lists, and sync to your task management to clearly see what you should build next (no code or heavy lifting needed).
✌🏻 Up and running in 5 minutes
Connect CRM, import feedback, feature lists, and sync to your task management to clearly see what you should build next (no code or heavy lifting needed).
✌🏻 Up and running
in 5 minutes
Connect CRM, import feedback, feature lists, and sync to your task management to clearly see what you should build next (no code or heavy lifting needed).