Trust and Security at Yuppasoft
Enterprise-grade data protection​
Data Security
Encryption at rest and in transit
Customer data is encrypted at rest, stored on three redundant servers in private networks, and only accessible by the YuppaU application.
​
Data is never sent in plaintext. All web traffic is sent over TLS to ensure privacy and security.​
Application Security
Secured by design
With features like single sign-on and custom subdomains, only approved users can access data within YuppaU.
​
Yuppasoft regularly engages with experts for third-party penetration tests to ensure the security of the YuppaU application and customer data.
​
We use static analysis tooling to help find security vulnerabilities and errors in the codebase and secure our application during development.
​
Infrastructure Security
Trusted cloud infrastructure
Yuppasoft uses Amazon Web Services to host YuppaU. We utilize industry-leading security products from AWS including GuardDuty, Inspector, and Key Management Service to ensure application and data security.​Our servers are firewalled and kept up to date with the latest security patches.
Compliance
Yuppasoft undergoes independent security and compliance verification to help you meet your regulatory and compliance goals. Contact us for details of any of our certifications and reports.
SOC 2 Type I
Trust Services Principles
SOC 2 Type II
Audit report available upon request
ISO 27001
Certification in progress
HECVAT
Self-assessment available
