Comment on page
NotifyMe Statement on Security
NotifyMe services are hosted by Amazon Amazon Web Services (AWS) and fully benefit from its highly secure, high-performing, resilient, and efficient infrastructure.
The database is replicated synchronously so that we can quickly recover from a database failure. Additionally, we take regular snapshots of the database and securely move them to a separate data center so that we can restore them elsewhere as needed, even in the unlikely event of an AWS failure.
We currently host data in secure SSAE 16 audited data centers via Amazon RDS in Europe.
On a database instance running with Amazon RDS encryption, data stored at rest in the underlying storage is encrypted, as are its automated backups, read replicas, and snapshots. RDS encryption uses the industry standard AES-256 encryption algorithm to encrypt your data on the server.
Web connections to the NotifyMe service are via TLS 1.2 and above. We support forward secrecy and AES-GCM, and prohibit insecure connections using TLS 1.1 and below or RC4.
Amazon employs a robust physical security program with multiple certifications, including an SSAE 16 certification. For more information on Amazon’s physical security processes, please visit this page.
NotifyMe Privacy Notice, which describes how we handle data input into NotifyMe, can be found here.
