Skip to main content
All CollectionsTelleroo Overview
How Telleroo keeps your data secure
How Telleroo keeps your data secure
Steven Redmayne avatar
Written by Steven Redmayne
Updated over a week ago

Safety is paramount to what we do at Telleroo.

We work with the best partners, regularly perform pen tests and implement new standards for IT safety in our application. All in order to protect your data.

Our servers

Our physical infrastructure is hosted and managed within Amazon’s secure data centres and uses the Amazon Web Services technology.

Amazon data centres have been accredited under:

  • ISO 27001.

  • SOC 1 and SOC 2/SSAE 16/ISAE 3402 (Previously SAS 70 Type II).

  • PCI Level 1.

  • FISMA Moderate.

  • Sarbanes-Oxley (SOX).

For additional information, please see: https://aws.amazon.com/security/

Secure connections

All communication between our applications and servers are secured by HTTPS connections. The data is always encrypted with a 2048-bit SSL certification.

We also monitor the SSL field and adjust our settings accordingly in order to be in compliance with the security terms and conditions. We actively block old protocols and weak ciphers.

Availability & uptime

The AWS servers give an uptime guarantee of 99.9% over a period of 12 months. The applications and your data is always accessible if needed.

Redundancies

Our systems are taught from the start to always expect the worst. With that in mind, they can automatically recover from an incident without data loss in a matter of seconds.

The underlying infrastructure is deployed across multiple data centres and data can be restored from continuous backups.

Servers are spread across different physical infrastructures to increase redundancy and decrease the probability of Telleroo going down during any event.

Vulnerability scans on employee devices and services

Our servers are scanned every time a new threat/vulnerability is known and flagged if action needs to be taken. Every month all known threats/vulnerabilities are scanned against our servers to ensure no regression has taken place in any updates to the platform.

Penetration testing

Once a year we Pen test our platform to ensure all our API’s and services are secure. Any weaknesses are then added for our development team to assess. Once any suggestions are updated our platform is retested again.

Simulations

Internal phishing attempts are automatically run against all employees to ensure Telleroo keeps your data safe.

ISO27001

In October 2023, Telleroo gained our own ISO27001 accreditation which relates to information security management. You can read more about this here.

Did this answer your question?