Security at Minsilo

Learn how we keep your data safe and secure.

We take security seriously at Minsilo. We protect your data like it's ours (because we also use Minsilo to store our important data). Here are the steps we take specifically to keep your data safe and secure.

How we secure your data

We follow industry leading best practices for keeping your data safe and secure.

Per-customer separation

Each workspace that you create in Minsilo is stored in a separate database schema, separate from other customers. This reduces the risk of data leakage and ensures that you only have access to the data in your workspace. Every workspace is provided on a separate subdomain (e.g. yourcompany.minsilo.com).

For a fee, enterprise customers can request their workspace(s) be stored on a separate database server instance and using a separate backend application server.

Backups

All data you create in app is backed up at least nightly. File attachments and uploaded files are stored using Amazon's S3 service, which provides 99.999999999% durability and is is stored redundantly across mutliple devices and facilities. We periodically restore backups to ensure their integrity.

Encryption in transit and at rest

All data sent between your computer and our server is encrypted using HTTPS (specifically using the TLS protocol). This means that data you send and receive from us can only be viewed by you, and cannot be intercepted by hackers.

Once we recieve your data, we store it using Server-Side Encryption on AWS. This utilizes the AES-256 cipher to securely store your data at rest.

Where we host your data

Our top consideration when selecting cloud providers is the privacy and security of your data. We only use well-known and established cloud providers for services that involve your sensitive data. All of our application-related providers are SOC 2 compliant.

  • Minsilo is hosted on Amazon Web Services (AWS). We use AWS to run our application servers, manage our databases, send emails, and store files.
  • Payments are processed using Stripe, which is a PCI-compliant payment processor. They provide best-in-class tools to ensure your payment information is securely stored. At no time does Minsilo recieve, collect, or store sensitive payment card information (like your credit card number, expiration date, or CVV code).
  • Emails are sent using the Amazon Simple Email Service (SES). You can learn more about how Amazon protects emails sent through SES here.
  • Forms submitted on our websites are handled through Formspree.io. Here is their privacy policy. In some cases, we may also use Typeform for online forms. Here is a link to their privacy policy.
  • Mailing lists and marketing emails are sent through Mailchimp. Here is a link to their privacy policy.

Billing

We use Stripe to provide key billing functions. We follow PCI compliant practices and do not store any credit card data on our servers at any time. We only store unique idenitfiers that help us identify subscriptions that you may have with us. These identifiers do not allow additional charges to be be placed on your credit card.

Stripe is regularly audited by a PCI-certified auditor. They are certified to PCI Service Provider Level 1, which is the highest level of certification available.

Passwords and authentication

Misilo provides email-and-password based authentication. Under the hood, we use the Devise library to properly handle passwords that you use with your account. These passwords are never stored in cleartext; they are always hashed and salted before being stored. You can read more about how Devise works here.

We follow the 2020 version of NIST's SP 800-63-3 standards, which clarify best practices for using and storing passwords. You can find a summary version here.

Employee access to customer data

We use policy and technological controls to limit employee access to your business data. Where practical, we log access to customer data. Here is our policy for access below:

  • Developers generally do not have access to production customer data. We do not share or provide keys for accessing customer data with our developers.
  • System administrators and DevOps engineers have direct access to our databases, object storage (S3), and application servers. They can only access customer data to address specific issues related to the appliation.
  • Sales and support individuals have limited access to our internal admin dashboard. They can see general customer information, including the name of your workspace and your current subscription information (but not any payment information). They cannot see any of the data you store in your workspace, unless they escalate the issue to a senior team member.
  • Senior team members can access specific customer data only with the explicit permission of the customer. We take steps to verify the legitimacy and necessity of these requests before providing access.
  • Access is only provided to employees who have signed a binding Confidentiality Agreement that restricts their ability to discuss, disclose, or act on information they discover during the process of providing support or managing the application.

Data retention policies and information governance

Storing too much data poses a risk to everybody involved. That's why we only store data when it's necessary to deliver the application and provide a good customer experience. This means that we:

  • Store customer data for as long as you remain a paid customer. Customers who have cancelled their membership or stopped paying will have their data retained for a period of 90 days. During this time, you can access your data to export it. After 90 days have passed, we reserve the right to delete your data.
  • Store data for workspaces that are on free tiers for as long as you remain an active user of Minsilo. We define accounts as being active if they've been logged into in the past 180 days. We will attempt to notify the owner of the account about 150 days after the last successful login. If no user in that workspace logs in during the next 30 days, we'll mark the account for deletion. We'll continue to hold the data for another 90 days and notify you once more of your account being deleted. After 270 days have elapsed since the last successful login to your workspace, we will delete your workspace and all of its associated data.
  • Delete data if you request us to. For workspaces with more than 1 user, we require an additional validation before we can process your data deletion request. This ensures only authorized parties can delete a workspace.
  • Data that you delete in the course of using the application.

In the event that we receive a lawful government request, we may retain data for a period longer than specified above. However, once data is deleted according to our policy, we cannot recover that data under any circumstance.

Responsible Disclsoure

We strongly support the work of security researchers and welcome the responsible disclosure of bugs, vulnerabilities, and other security issues. At this time, we are unable to provide a bounty for vulnerabilities that you disclose to us. However, you may publicly disclose your findings 90 days after disclosure or after we patch the bug, whichever is sooner.

You can disclose vulnerabilities securely by email at contact@minsilo.com. Be sure to include "Responsible Disclosure" in the subject.

Questions?

If you have any questions about how we handle security at Minsilo, please email us at contact@minsilo.com.