Security

Overview

We focus on highest standards of security in design, development, deployment & management of data with focus on constant improvement. We do daily automated security scans with reassessment of designs, implementation on a quarterly basis. We invest in latest and best in class technologies to secure & protect our customer data.

3 Core Dimensions

of our Approach to secuirty

Fitbots applies N Dimensional thinking in systems design. Broadly structured around 3 themes Data, Infrastructure & Application. Importantly, our focus is providing Confidentiality, Isolation, Compliance to regulations in line with Global Best Practices

Data

Data isolated by each tenant - tied to specific domain

Data is encrypted in rest with AES 256 encryption

Data encrypted in motion ( SSL & TLS 1.2+)

Data is encrypted even in client storage

When SSO is used we do not store your credentials in our systems

Infrastructure

Our Policies are audited Quarterly

Active Threat Management with Cloud Security Command Center at the heart of the system

Fitbots is hosted on Google Cloud Platform (GCP) for all environments

GCP data centers  are certified with ISO/IEC 27001 , ISO/IEC 2701, ISO/IEC 27018, SOC 1/2/3, PCIDSS & CSA star rating.
For further information please refer to: https://cloud.google.com/security

Application

Security scans using global best in class tools

Security best practices & procedures reviewed by cross-functional teams.

Validation & reviews with Global standards.
( CyberGrx)

PERFORMANCE AND AVAILABILITY

Your business relies on us, and hence Fitbots ensures its OKR Management is always available. We ensure that your teams can always locate, access & update OKRs on our always available platform. Platform Availability is at 99.8% assuring low RPO & RTO. You could also track our performance Live on http://status.fitbots.com

ONGOING COMMITMENT TO SECURITY: 

Our Policies are audited Quarterly. Active Threat Management with Cloud Security Command Center at the heart of the system.  

EMPLOYEE TRAINING: 

Being an ISO 27001 certified company, all our employees undergo security training annually.   

PENETRATION TESTING: 

We run frequent security scans using best in class tools.